Jump to content

amy_lase

Honorary Members
  • Posts

    24
  • Joined

  • Last visited

Everything posted by amy_lase

  1. Thank you! I will do the removal. I really appreciate your help.
  2. Here is the log: Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Database version: v2012.08.02.07 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 admin :: D872FF41 [administrator] 8/2/2012 8:52:06 AM mbam-log-2012-08-02 (08-52-06).txt Scan type: Full scan (C:\|D:\|E:\|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 339981 Time elapsed: 3 hour(s), 14 minute(s), 36 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) The computer seems to be running normally. No strange processes. The only thing that slightly bothers me is a connection on netstat that shows the computer is connection to xpc-mii.net. Do you have any idea what this is? Also, eight svchost.exe processes are running. Is this abnormal? Other than that, everything seems fine.
  3. I left it alone, and apparently it did finish running. Here is the log that was up on the computer when I came back: Combofix log: ComboFix 12-07-31.03 - admin 08/01/2012 14:28:33.1.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1022.481 [GMT -5:00] Running from: c:\documents and settings\admin\Desktop\Combo-Fix.exe AV: Charter Security Suite 9.01 *Disabled/Updated* {E7512ED5-4245-4B4D-AF3A-382D3F313F15} FW: Charter Security Suite 9.01 *Enabled* {D4747503-0346-49EB-9262-997542F79BF4} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\admin\Application Data\HPSU_48BitScanUpdate.log c:\documents and settings\admin\My Documents\~ofAB.tmp c:\documents and settings\admin\WINDOWS c:\documents and settings\All Users\Start Menu\HP Image Zone .lnk c:\windows\system32\dllcache\wmpvis.dll c:\windows\system32\drivers\fad.sys c:\windows\system32\o02PrEz c:\windows\system32\SET87.tmp c:\windows\system32\SET93.tmp c:\windows\system32\SETDA.tmp c:\windows\SYSTEM32\ttutv.bak1 c:\windows\SYSTEM32\ttutv.bak2 c:\windows\SYSTEM32\ttutv.ini c:\windows\SYSTEM32\ttutv.ini2 c:\windows\SYSTEM32\ttutv.tmp c:\windows\system32\URTTemp c:\windows\system32\URTTemp\fusion.dll c:\windows\system32\URTTemp\mscoree.dll c:\windows\system32\URTTemp\mscoree.dll.local c:\windows\system32\URTTemp\mscorsn.dll c:\windows\system32\URTTemp\mscorwks.dll c:\windows\system32\URTTemp\msvcr71.dll c:\windows\system32\URTTemp\regtlib.exe . . ((((((((((((((((((((((((( Files Created from 2012-07-01 to 2012-08-01 ))))))))))))))))))))))))))))))) . . 2012-07-29 21:17 . 2012-07-29 21:18 -------- d-----w- c:\program files\ERUNT 2012-07-27 17:00 . 2012-07-27 17:00 -------- d-----w- c:\documents and settings\admin\Application Data\Malwarebytes 2012-07-27 16:59 . 2012-07-27 16:59 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2012-07-27 16:59 . 2012-07-03 18:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-07-27 16:59 . 2012-07-30 18:28 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-07-27 15:10 . 2012-07-27 15:10 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com 2012-07-22 23:28 . 2012-07-22 23:28 -------- d-----w- c:\program files\Joy of Cooking . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-30 17:58 . 2011-08-31 15:34 687600 ----a-w- c:\windows\system32\deployJava1.dll 2012-07-27 15:06 . 2012-04-15 16:22 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-07-27 15:06 . 2011-10-18 14:26 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-06-13 13:19 . 2002-08-29 11:00 1866112 ----a-w- c:\windows\system32\win32k.sys 2012-06-05 15:50 . 2008-08-24 01:34 1372672 ----a-w- c:\windows\system32\msxml6.dll 2012-06-05 15:50 . 2002-08-29 11:00 1172480 ----a-w- c:\windows\system32\msxml3.dll 2012-06-04 04:32 . 2002-08-29 11:00 152576 ----a-w- c:\windows\system32\schannel.dll 2012-06-02 20:19 . 2007-05-31 15:12 22040 ----a-w- c:\windows\system32\wucltui.dll.mui 2012-06-02 20:19 . 2007-05-31 15:12 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui 2012-06-02 20:19 . 2004-08-23 21:05 329240 ----a-w- c:\windows\system32\wucltui.dll 2012-06-02 20:19 . 2004-08-23 21:05 219160 ----a-w- c:\windows\system32\wuaucpl.cpl 2012-06-02 20:19 . 2004-08-23 21:05 210968 ----a-w- c:\windows\system32\wuweb.dll 2012-06-02 20:19 . 2007-05-31 15:12 15384 ----a-w- c:\windows\system32\wuapi.dll.mui 2012-06-02 20:19 . 2005-05-26 08:16 45080 ----a-w- c:\windows\system32\wups2.dll 2012-06-02 20:19 . 2004-08-23 21:05 35864 ----a-w- c:\windows\system32\wups.dll 2012-06-02 20:19 . 2002-08-29 11:00 97304 ----a-w- c:\windows\system32\cdm.dll 2012-06-02 20:19 . 2002-08-29 11:00 53784 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-02 20:19 . 2007-05-31 15:12 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui 2012-06-02 20:19 . 2004-08-23 21:05 577048 ----a-w- c:\windows\system32\wuapi.dll 2012-06-02 20:19 . 2002-08-29 11:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-02 20:18 . 2007-06-04 15:42 17136 ----a-w- c:\windows\system32\mucltui.dll.mui 2012-06-02 20:18 . 2007-05-31 14:15 214256 ----a-w- c:\windows\system32\muweb.dll 2012-06-02 20:18 . 2005-08-17 21:13 275696 ----a-w- c:\windows\system32\mucltui.dll 2012-05-31 13:22 . 2003-03-20 22:18 599040 ----a-w- c:\windows\system32\crypt32.dll 2012-05-16 15:08 . 2005-06-18 03:49 916992 ----a-w- c:\windows\system32\wininet.dll 2012-05-11 14:42 . 2002-08-29 11:00 43520 ----a-w- c:\windows\system32\licmgr10.dll 2012-05-11 14:42 . 2002-08-29 11:00 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-05-11 11:38 . 2004-08-04 05:59 385024 ----a-w- c:\windows\system32\html.iec 2012-05-09 12:56 . 2011-10-18 14:38 44184 ----a-w- c:\windows\system32\drivers\fsbts.sys 2012-05-04 13:12 . 1980-01-01 06:00 2192640 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-05-04 12:32 . 1980-01-01 06:00 2069120 ----a-w- c:\windows\system32\ntkrnlpa.exe . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-04-04 68856] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-12 49152] "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-03-30 185896] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-27 30040] "F-Secure Manager"="c:\program files\Charter Security Suite\Common\FSM32.EXE" [2009-08-05 199264] "F-Secure TNB"="c:\program files\Charter Security Suite\FSGUI\TNBUtil.exe" [2009-08-05 2349664] "Zune Launcher"="c:\program files\Zune\ZuneLauncher.exe" [2011-08-05 159456] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-02 59240] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-12-08 421736] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-04 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] . c:\documents and settings\admin\Start Menu\Programs\Startup\ ERUNT AutoBackup.lnk - c:\program files\ERUNT\AUTOBACK.EXE [2005-10-20 38912] . c:\documents and settings\All Users\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-11 282624] HP Image Zone Fast Start.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2005-5-11 73728] TotalMedia Backup Monitor.lnk - c:\program files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe [2007-6-12 270336] . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] 2008-04-14 00:12 15360 ----a-w- c:\windows\SYSTEM32\ctfmon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= . R0 fsbts;fsbts;c:\windows\SYSTEM32\DRIVERS\fsbts.sys [10/18/2011 9:38 AM 44184] R0 FSFW;F-Secure Firewall Driver;c:\windows\SYSTEM32\DRIVERS\fsdfw.sys [10/18/2011 9:37 AM 82120] R1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files\Charter Security Suite\HIPS\drivers\fshs.sys [10/18/2011 9:37 AM 68064] R2 LxrSII1d;Secure II Driver;c:\windows\SYSTEM32\DRIVERS\LxrSII1d.sys [5/31/2008 9:09 AM 72672] R2 npf;NetGroup Packet Filter Driver;c:\windows\SYSTEM32\DRIVERS\npf.sys [7/15/2010 7:45 PM 35088] R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\Viewpoint\Common\ViewpointService.exe [8/21/2008 8:30 PM 24652] R3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\Charter Security Suite\Anti-Virus\minifilter\fsgk.sys [10/18/2011 9:36 AM 149672] R3 FSORSPClient;F-Secure ORSP Client;c:\program files\Charter Security Suite\ORSP Client\fsorsp.exe [10/18/2011 9:37 AM 61088] R3 TuneConvertAudio;TuneConvertAudio;c:\windows\SYSTEM32\DRIVERS\TuneConvertAudio.sys [6/25/2011 11:29 AM 23608] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SYSTEM32\Macromed\Flash\FlashPlayerUpdateService.exe [4/15/2012 11:22 AM 250056] S3 GSService;GSService;c:\windows\SYSTEM32\GSService.exe [6/25/2011 11:29 AM 745472] S3 PRISM_USB;Dell TrueMobile 1180 Wireless USB Adapter;c:\windows\SYSTEM32\DRIVERS\DELUSB_51.sys [2/24/2004 2:56 AM 606208] S3 SMServer;SMServer;c:\windows\SYSTEM32\snmvtsvc.exe [6/25/2011 11:29 AM 243712] S3 WMZuneComm;Zune Windows Mobile Connectivity Service;c:\program files\Zune\WMZuneComm.exe [8/5/2011 1:30 PM 268512] . Contents of the 'Scheduled Tasks' folder . 2012-08-01 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-15 15:06] . 2012-07-28 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 23:57] . 2012-08-01 c:\windows\Tasks\Scheduled scanning task.job - c:\progra~1\CHARTE~1\ANTI-V~1\fsav.exe [2011-10-18 15:56] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.google.com/ uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uInternet Settings,ProxyOverride = *.local uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s IE: &Google Search IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000 LSP: c:\program files\Charter Security Suite\FSPS\program\FSLSP.DLL TCP: DhcpNameServer = 192.168.2.1 24.205.224.36 68.190.192.35 . - - - - ORPHANS REMOVED - - - - . SafeBoot-WudfPf SafeBoot-WudfRd . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2012-08-01 14:41 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(628) c:\program files\charter security suite\hips\fshook32.dll . - - - - - - - > 'lsass.exe'(684) c:\program files\Charter Security Suite\FSPS\program\FSLSP.DLL c:\program files\charter security suite\hips\fshook32.dll . Completion time: 2012-08-01 14:48:45 ComboFix-quarantined-files.txt 2012-08-01 19:48 . Pre-Run: 24,847,765,504 bytes free Post-Run: 25,216,282,624 bytes free . WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn . - - End Of File - - 2C83E2D82FDE011E74EF36D4FA320FEC
  4. I saved combofix as you instructed and started it. However, the program will not go past the point in which the dialogue box says output folder C:\32788R... it has been stuck on this for about thirty minutes now. What should I do?
  5. Just out of curiosity, what is the function of the Chameleon folder? Is it to disguise processes so malware do not target them or kill the process?
  6. Here is the report: 18:55:55.0828 3096 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32 18:55:57.0734 3096 ============================================================ 18:55:57.0734 3096 Current date / time: 2012/07/31 18:55:57.0734 18:55:57.0734 3096 SystemInfo: 18:55:57.0734 3096 18:55:57.0734 3096 OS Version: 5.1.2600 ServicePack: 3.0 18:55:57.0734 3096 Product type: Workstation 18:55:57.0734 3096 ComputerName: D872FF41 18:55:57.0734 3096 UserName: admin 18:55:57.0734 3096 Windows directory: C:\WINDOWS 18:55:57.0734 3096 System windows directory: C:\WINDOWS 18:55:57.0734 3096 Processor architecture: Intel x86 18:55:57.0734 3096 Number of processors: 1 18:55:57.0734 3096 Page size: 0x1000 18:55:57.0734 3096 Boot type: Normal boot 18:55:57.0734 3096 ============================================================ 18:56:01.0000 3096 Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 18:56:01.0000 3096 ============================================================ 18:56:01.0000 3096 \Device\Harddisk0\DR0: 18:56:01.0000 3096 MBR partitions: 18:56:01.0000 3096 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xFB04, BlocksNum 0x94EEEB9 18:56:01.0000 3096 ============================================================ 18:56:01.0031 3096 C: <-> \Device\Harddisk0\DR0\Partition0 18:56:01.0031 3096 ============================================================ 18:56:01.0031 3096 Initialize success 18:56:01.0031 3096 ============================================================ 18:56:03.0500 2864 ============================================================ 18:56:03.0500 2864 Scan started 18:56:03.0500 2864 Mode: Manual; 18:56:03.0500 2864 ============================================================ 18:56:05.0000 2864 Abiosdsk - ok 18:56:05.0062 2864 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS 18:56:05.0062 2864 abp480n5 - ok 18:56:05.0156 2864 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys 18:56:05.0171 2864 ACPI - ok 18:56:05.0218 2864 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys 18:56:05.0218 2864 ACPIEC - ok 18:56:05.0343 2864 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 18:56:05.0359 2864 AdobeFlashPlayerUpdateSvc - ok 18:56:05.0406 2864 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys 18:56:05.0421 2864 adpu160m - ok 18:56:05.0468 2864 aeaudio (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys 18:56:05.0468 2864 aeaudio - ok 18:56:05.0515 2864 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 18:56:05.0515 2864 aec - ok 18:56:05.0562 2864 Afc (a7b8a3a79d35215d798a300df49ed23f) C:\WINDOWS\system32\drivers\Afc.sys 18:56:05.0562 2864 Afc - ok 18:56:05.0625 2864 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 18:56:05.0640 2864 AFD - ok 18:56:05.0703 2864 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\System32\DRIVERS\agp440.sys 18:56:05.0703 2864 agp440 - ok 18:56:05.0734 2864 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\System32\DRIVERS\agpCPQ.sys 18:56:05.0734 2864 agpCPQ - ok 18:56:05.0765 2864 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\System32\DRIVERS\aha154x.sys 18:56:05.0765 2864 Aha154x - ok 18:56:05.0796 2864 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys 18:56:05.0812 2864 aic78u2 - ok 18:56:05.0843 2864 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys 18:56:05.0859 2864 aic78xx - ok 18:56:05.0921 2864 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll 18:56:05.0921 2864 Alerter - ok 18:56:05.0968 2864 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe 18:56:05.0968 2864 ALG - ok 18:56:06.0031 2864 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\System32\DRIVERS\aliide.sys 18:56:06.0031 2864 AliIde - ok 18:56:06.0109 2864 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\System32\DRIVERS\alim1541.sys 18:56:06.0109 2864 alim1541 - ok 18:56:06.0125 2864 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\System32\DRIVERS\amdagp.sys 18:56:06.0140 2864 amdagp - ok 18:56:06.0171 2864 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\System32\DRIVERS\amsint.sys 18:56:06.0171 2864 amsint - ok 18:56:06.0406 2864 AOL ACS (73d675514f148b1e69429e1d95e22adc) C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe 18:56:06.0468 2864 AOL ACS - ok 18:56:06.0578 2864 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 18:56:06.0593 2864 Apple Mobile Device - ok 18:56:06.0703 2864 AppMgmt - ok 18:56:06.0781 2864 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\System32\DRIVERS\asc.sys 18:56:06.0781 2864 asc - ok 18:56:06.0796 2864 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\System32\DRIVERS\asc3350p.sys 18:56:06.0812 2864 asc3350p - ok 18:56:06.0828 2864 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\System32\DRIVERS\asc3550.sys 18:56:06.0828 2864 asc3550 - ok 18:56:07.0031 2864 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 18:56:07.0031 2864 aspnet_state - ok 18:56:07.0093 2864 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 18:56:07.0093 2864 AsyncMac - ok 18:56:07.0140 2864 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 18:56:07.0140 2864 atapi - ok 18:56:07.0171 2864 Atdisk - ok 18:56:07.0218 2864 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 18:56:07.0218 2864 Atmarpc - ok 18:56:07.0281 2864 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll 18:56:07.0296 2864 AudioSrv - ok 18:56:07.0359 2864 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 18:56:07.0359 2864 audstub - ok 18:56:07.0437 2864 bcm4sbxp (068523d2cd260069b19ad68adea0d739) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys 18:56:07.0453 2864 bcm4sbxp - ok 18:56:07.0468 2864 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 18:56:07.0468 2864 Beep - ok 18:56:07.0546 2864 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll 18:56:07.0578 2864 BITS - ok 18:56:07.0687 2864 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 18:56:07.0718 2864 Bonjour Service - ok 18:56:07.0781 2864 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll 18:56:07.0781 2864 Browser - ok 18:56:07.0812 2864 bvrp_pci - ok 18:56:07.0859 2864 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\System32\DRIVERS\cbidf2k.sys 18:56:07.0859 2864 cbidf - ok 18:56:07.0875 2864 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 18:56:07.0875 2864 cbidf2k - ok 18:56:07.0953 2864 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 18:56:07.0953 2864 CCDECODE - ok 18:56:08.0000 2864 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys 18:56:08.0000 2864 cd20xrnt - ok 18:56:08.0031 2864 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 18:56:08.0046 2864 Cdaudio - ok 18:56:08.0109 2864 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 18:56:08.0109 2864 Cdfs - ok 18:56:08.0171 2864 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys 18:56:08.0187 2864 Cdrom - ok 18:56:08.0203 2864 Changer - ok 18:56:08.0265 2864 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe 18:56:08.0265 2864 CiSvc - ok 18:56:08.0328 2864 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe 18:56:08.0343 2864 ClipSrv - ok 18:56:08.0500 2864 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 18:56:08.0515 2864 clr_optimization_v2.0.50727_32 - ok 18:56:08.0578 2864 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\System32\DRIVERS\cmdide.sys 18:56:08.0578 2864 CmdIde - ok 18:56:08.0609 2864 COMSysApp - ok 18:56:08.0640 2864 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\System32\DRIVERS\cpqarray.sys 18:56:08.0640 2864 Cpqarray - ok 18:56:08.0703 2864 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll 18:56:08.0718 2864 CryptSvc - ok 18:56:08.0765 2864 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\System32\DRIVERS\dac2w2k.sys 18:56:08.0781 2864 dac2w2k - ok 18:56:08.0812 2864 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\System32\DRIVERS\dac960nt.sys 18:56:08.0812 2864 dac960nt - ok 18:56:08.0890 2864 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll 18:56:08.0906 2864 DcomLaunch - ok 18:56:08.0984 2864 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll 18:56:09.0000 2864 Dhcp - ok 18:56:09.0062 2864 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 18:56:09.0062 2864 Disk - ok 18:56:09.0078 2864 dmadmin - ok 18:56:09.0156 2864 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys 18:56:09.0234 2864 dmboot - ok 18:56:09.0265 2864 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys 18:56:09.0281 2864 dmio - ok 18:56:09.0328 2864 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 18:56:09.0328 2864 dmload - ok 18:56:09.0390 2864 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll 18:56:09.0390 2864 dmserver - ok 18:56:09.0453 2864 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 18:56:09.0468 2864 DMusic - ok 18:56:09.0531 2864 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll 18:56:09.0546 2864 Dnscache - ok 18:56:09.0593 2864 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll 18:56:09.0609 2864 Dot3svc - ok 18:56:09.0640 2864 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\System32\DRIVERS\dpti2o.sys 18:56:09.0640 2864 dpti2o - ok 18:56:09.0703 2864 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 18:56:09.0703 2864 drmkaud - ok 18:56:09.0781 2864 drvmcdb (7f056a52bcba3102d2d37a4a2646c807) C:\WINDOWS\system32\drivers\drvmcdb.sys 18:56:09.0796 2864 drvmcdb - ok 18:56:09.0828 2864 drvnddm (d3c1e501ed42e77574b3095309dd4075) C:\WINDOWS\system32\drivers\drvnddm.sys 18:56:09.0828 2864 drvnddm - ok 18:56:09.0984 2864 DSBrokerService (fe80901578e7e3da70299a5aeb2b7fbd) C:\Program Files\DellSupport\brkrsvc.exe 18:56:10.0000 2864 DSBrokerService - ok 18:56:10.0093 2864 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys 18:56:10.0093 2864 DSproct - ok 18:56:10.0140 2864 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys 18:56:10.0156 2864 dsunidrv - ok 18:56:10.0218 2864 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll 18:56:10.0218 2864 EapHost - ok 18:56:10.0281 2864 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys 18:56:10.0281 2864 EL90XBC - ok 18:56:10.0359 2864 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll 18:56:10.0359 2864 ERSvc - ok 18:56:10.0421 2864 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe 18:56:10.0453 2864 Eventlog - ok 18:56:10.0515 2864 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll 18:56:10.0515 2864 EventSystem - ok 18:56:10.0703 2864 F-Secure Gatekeeper (66422dc3faa1de433371816056d28270) C:\Program Files\Charter Security Suite\Anti-Virus\minifilter\fsgk.sys 18:56:10.0718 2864 F-Secure Gatekeeper - ok 18:56:10.0750 2864 F-Secure Gatekeeper Handler Starter (a9be66e05254b20df82e0f7cddeca7dd) C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32st.exe 18:56:10.0765 2864 F-Secure Gatekeeper Handler Starter - ok 18:56:10.0843 2864 F-Secure HIPS (f5aca65237c7511d5803cdc5e7003d75) C:\Program Files\Charter Security Suite\HIPS\drivers\fshs.sys 18:56:10.0859 2864 F-Secure HIPS - ok 18:56:10.0921 2864 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 18:56:10.0921 2864 Fastfat - ok 18:56:10.0984 2864 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 18:56:11.0000 2864 FastUserSwitchingCompatibility - ok 18:56:11.0078 2864 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe 18:56:11.0078 2864 Fax - ok 18:56:11.0109 2864 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 18:56:11.0125 2864 Fdc - ok 18:56:11.0187 2864 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys 18:56:11.0187 2864 Fips - ok 18:56:11.0234 2864 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 18:56:11.0234 2864 Flpydisk - ok 18:56:11.0296 2864 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 18:56:11.0312 2864 FltMgr - ok 18:56:11.0484 2864 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 18:56:11.0484 2864 FontCache3.0.0.0 - ok 18:56:11.0546 2864 fsbts (1d2de58a837e6909f98ca35103d10739) C:\WINDOWS\system32\Drivers\fsbts.sys 18:56:11.0546 2864 fsbts - ok 18:56:11.0625 2864 FSDFWD (8e0bf7478cc3baed48282adbc97adafb) C:\Program Files\Charter Security Suite\FWES\Program\fsdfwd.exe 18:56:11.0656 2864 FSDFWD - ok 18:56:11.0718 2864 FSFW (aca3910a53a057b8c3a6ebf4ef788c7c) C:\WINDOWS\system32\drivers\fsdfw.sys 18:56:11.0734 2864 FSFW - ok 18:56:11.0843 2864 FSMA (392e85687a902239c01baddf212b1a36) C:\Program Files\Charter Security Suite\Common\FSMA32.EXE 18:56:11.0859 2864 FSMA - ok 18:56:11.0968 2864 FSORSPClient (42aef6a385354aca65fc210ce7ce4d7c) C:\Program Files\Charter Security Suite\ORSP Client\fsorsp.exe 18:56:11.0984 2864 FSORSPClient - ok 18:56:12.0046 2864 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 18:56:12.0062 2864 Fs_Rec - ok 18:56:12.0140 2864 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 18:56:12.0156 2864 Ftdisk - ok 18:56:12.0250 2864 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 18:56:12.0250 2864 GEARAspiWDM - ok 18:56:12.0312 2864 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 18:56:12.0312 2864 Gpc - ok 18:56:12.0421 2864 GSService (70b37139a745d672bf2c722df0c61750) C:\WINDOWS\system32\GSService.exe 18:56:12.0453 2864 GSService - ok 18:56:12.0593 2864 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 18:56:12.0609 2864 gusvc - ok 18:56:12.0734 2864 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 18:56:12.0734 2864 helpsvc - ok 18:56:12.0750 2864 HidServ - ok 18:56:12.0812 2864 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 18:56:12.0812 2864 HidUsb - ok 18:56:12.0859 2864 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll 18:56:12.0875 2864 hkmsvc - ok 18:56:12.0921 2864 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\System32\DRIVERS\hpn.sys 18:56:12.0921 2864 hpn - ok 18:56:12.0984 2864 HPZid412 (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys 18:56:13.0000 2864 HPZid412 - ok 18:56:13.0015 2864 HPZipr12 (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys 18:56:13.0015 2864 HPZipr12 - ok 18:56:13.0078 2864 HPZius12 (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys 18:56:13.0093 2864 HPZius12 - ok 18:56:13.0171 2864 HSFHWBS2 (5380253d2751f2b5d95941c09e7e42ac) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys 18:56:13.0187 2864 HSFHWBS2 - ok 18:56:13.0312 2864 HSF_DP (e9a4c20ab168be8bd78486afebba5836) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys 18:56:13.0359 2864 HSF_DP - ok 18:56:13.0421 2864 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 18:56:13.0437 2864 HTTP - ok 18:56:13.0500 2864 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll 18:56:13.0500 2864 HTTPFilter - ok 18:56:13.0562 2864 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys 18:56:13.0578 2864 i2omgmt - ok 18:56:13.0625 2864 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\System32\DRIVERS\i2omp.sys 18:56:13.0625 2864 i2omp - ok 18:56:13.0703 2864 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 18:56:13.0718 2864 i8042prt - ok 18:56:13.0765 2864 i81x (06b7ef73ba5f302eecc294cdf7e19702) C:\WINDOWS\system32\DRIVERS\i81xnt5.sys 18:56:13.0781 2864 i81x - ok 18:56:13.0843 2864 iAimFP0 (7b5b44efe5eb9dadfb8ee29700885d23) C:\WINDOWS\system32\DRIVERS\wADV01nt.sys 18:56:13.0843 2864 iAimFP0 - ok 18:56:13.0875 2864 iAimFP1 (eb1f6bab6c22ede0ba551b527475f7e9) C:\WINDOWS\system32\DRIVERS\wADV02NT.sys 18:56:13.0875 2864 iAimFP1 - ok 18:56:13.0921 2864 iAimFP2 (03ce989d846c1aa81145cb22fcb86d06) C:\WINDOWS\system32\DRIVERS\wADV05NT.sys 18:56:13.0921 2864 iAimFP2 - ok 18:56:13.0953 2864 iAimFP3 (525849b4469de021d5d61b4db9be3a9d) C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys 18:56:13.0968 2864 iAimFP3 - ok 18:56:13.0984 2864 iAimFP4 (589c2bcdb5bd602bf7b63d210407ef8c) C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys 18:56:14.0000 2864 iAimFP4 - ok 18:56:14.0046 2864 iAimTV0 (d83bdd5c059667a2f647a6be5703a4d2) C:\WINDOWS\system32\DRIVERS\wATV01nt.sys 18:56:14.0062 2864 iAimTV0 - ok 18:56:14.0078 2864 iAimTV1 (ed968d23354daa0d7c621580c012a1f6) C:\WINDOWS\system32\DRIVERS\wATV02NT.sys 18:56:14.0078 2864 iAimTV1 - ok 18:56:14.0093 2864 iAimTV2 - ok 18:56:14.0125 2864 iAimTV3 (d738273f218a224c1ddac04203f27a84) C:\WINDOWS\system32\DRIVERS\wATV04nt.sys 18:56:14.0125 2864 iAimTV3 - ok 18:56:14.0203 2864 iAimTV4 (0052d118995cbab152daabe6106d1442) C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys 18:56:14.0203 2864 iAimTV4 - ok 18:56:14.0343 2864 ialm (44b7d5a4f2bd9fe21aea0bb0bace38c4) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 18:56:14.0421 2864 ialm - ok 18:56:14.0531 2864 ICAM3NT5 (7e9dce459be666ab54f67e77cb7d1297) C:\WINDOWS\system32\Drivers\Icam3.sys 18:56:14.0546 2864 ICAM3NT5 - ok 18:56:14.0765 2864 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 18:56:14.0781 2864 IDriverT - ok 18:56:14.0953 2864 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 18:56:14.0984 2864 idsvc - ok 18:56:15.0156 2864 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 18:56:15.0156 2864 Imapi - ok 18:56:15.0218 2864 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\System32\imapi.exe 18:56:15.0234 2864 ImapiService - ok 18:56:15.0281 2864 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\System32\DRIVERS\ini910u.sys 18:56:15.0281 2864 ini910u - ok 18:56:15.0343 2864 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\System32\DRIVERS\intelide.sys 18:56:15.0343 2864 IntelIde - ok 18:56:15.0390 2864 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys 18:56:15.0390 2864 intelppm - ok 18:56:15.0437 2864 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 18:56:15.0453 2864 ip6fw - ok 18:56:15.0515 2864 IPFilter (5f0a0b4bc604aa1cc3f56a50e57bf054) C:\WINDOWS\system32\DRIVERS\IPFilter.sys 18:56:15.0515 2864 IPFilter - ok 18:56:15.0578 2864 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 18:56:15.0593 2864 IpFilterDriver - ok 18:56:15.0625 2864 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 18:56:15.0625 2864 IpInIp - ok 18:56:15.0703 2864 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 18:56:15.0718 2864 IpNat - ok 18:56:15.0890 2864 iPod Service (178fe38b7740f598391eb2f51ae4ccac) C:\Program Files\iPod\bin\iPodService.exe 18:56:15.0921 2864 iPod Service - ok 18:56:15.0953 2864 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 18:56:15.0968 2864 IPSec - ok 18:56:16.0015 2864 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 18:56:16.0015 2864 IRENUM - ok 18:56:16.0156 2864 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys 18:56:16.0156 2864 isapnp - ok 18:56:16.0218 2864 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 18:56:16.0218 2864 Kbdclass - ok 18:56:16.0250 2864 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 18:56:16.0265 2864 kmixer - ok 18:56:16.0343 2864 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 18:56:16.0359 2864 KSecDD - ok 18:56:16.0421 2864 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll 18:56:16.0437 2864 lanmanserver - ok 18:56:16.0515 2864 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll 18:56:16.0531 2864 lanmanworkstation - ok 18:56:16.0546 2864 lbrtfdc - ok 18:56:16.0625 2864 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll 18:56:16.0625 2864 LmHosts - ok 18:56:16.0687 2864 LxrSII1d (7c12f93c005021861a36c11df951891a) C:\WINDOWS\system32\Drivers\LxrSII1d.sys 18:56:16.0718 2864 LxrSII1d - ok 18:56:16.0718 2864 LxrSII1s - ok 18:56:16.0781 2864 mbamchameleon (6c1b3c47915a8bf6bd752c9d476b1ca5) C:\WINDOWS\system32\drivers\mbamchameleon.sys 18:56:16.0781 2864 mbamchameleon - ok 18:56:16.0828 2864 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys 18:56:16.0843 2864 mdmxsdk - ok 18:56:16.0890 2864 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll 18:56:16.0890 2864 Messenger - ok 18:56:17.0140 2864 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 18:56:17.0140 2864 Microsoft Office Groove Audit Service - ok 18:56:17.0218 2864 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 18:56:17.0218 2864 mnmdd - ok 18:56:17.0281 2864 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe 18:56:17.0281 2864 mnmsrvc - ok 18:56:17.0343 2864 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys 18:56:17.0343 2864 Modem - ok 18:56:17.0390 2864 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys 18:56:17.0390 2864 Mouclass - ok 18:56:17.0437 2864 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 18:56:17.0437 2864 MountMgr - ok 18:56:17.0484 2864 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\System32\DRIVERS\mraid35x.sys 18:56:17.0484 2864 mraid35x - ok 18:56:17.0546 2864 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 18:56:17.0562 2864 MRxDAV - ok 18:56:17.0656 2864 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 18:56:17.0687 2864 MRxSmb - ok 18:56:17.0734 2864 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe 18:56:17.0734 2864 MSDTC - ok 18:56:17.0781 2864 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 18:56:17.0796 2864 Msfs - ok 18:56:17.0812 2864 MSIServer - ok 18:56:17.0859 2864 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 18:56:17.0859 2864 MSKSSRV - ok 18:56:17.0890 2864 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 18:56:17.0890 2864 MSPCLOCK - ok 18:56:17.0921 2864 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 18:56:17.0921 2864 MSPQM - ok 18:56:17.0968 2864 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 18:56:17.0984 2864 mssmbios - ok 18:56:18.0015 2864 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 18:56:18.0015 2864 MSTEE - ok 18:56:18.0078 2864 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 18:56:18.0093 2864 Mup - ok 18:56:18.0156 2864 MxlW2k (e91fc8b52d21e38317dc61a3c7ccfa4b) C:\WINDOWS\system32\drivers\MxlW2k.sys 18:56:18.0156 2864 MxlW2k - ok 18:56:18.0203 2864 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 18:56:18.0203 2864 NABTSFEC - ok 18:56:18.0281 2864 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll 18:56:18.0281 2864 napagent - ok 18:56:18.0375 2864 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 18:56:18.0375 2864 NDIS - ok 18:56:18.0437 2864 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 18:56:18.0437 2864 NdisIP - ok 18:56:18.0500 2864 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 18:56:18.0500 2864 NdisTapi - ok 18:56:18.0515 2864 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 18:56:18.0531 2864 Ndisuio - ok 18:56:18.0593 2864 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 18:56:18.0609 2864 NdisWan - ok 18:56:18.0671 2864 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 18:56:18.0671 2864 NDProxy - ok 18:56:18.0703 2864 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 18:56:18.0703 2864 NetBIOS - ok 18:56:18.0734 2864 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 18:56:18.0750 2864 NetBT - ok 18:56:18.0828 2864 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe 18:56:18.0828 2864 NetDDE - ok 18:56:18.0843 2864 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe 18:56:18.0843 2864 NetDDEdsdm - ok 18:56:18.0921 2864 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe 18:56:18.0921 2864 Netlogon - ok 18:56:18.0953 2864 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll 18:56:18.0968 2864 Netman - ok 18:56:19.0125 2864 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 18:56:19.0125 2864 NetTcpPortSharing - ok 18:56:19.0203 2864 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll 18:56:19.0218 2864 Nla - ok 18:56:19.0296 2864 npf (b48dc6abcd3aeff8618350ccbdc6b09a) C:\WINDOWS\system32\drivers\npf.sys 18:56:19.0296 2864 npf - ok 18:56:19.0375 2864 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 18:56:19.0375 2864 Npfs - ok 18:56:19.0437 2864 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 18:56:19.0453 2864 Ntfs - ok 18:56:19.0515 2864 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe 18:56:19.0531 2864 NtLmSsp - ok 18:56:19.0609 2864 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll 18:56:19.0625 2864 NtmsSvc - ok 18:56:19.0703 2864 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 18:56:19.0703 2864 Null - ok 18:56:19.0828 2864 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 18:56:19.0890 2864 nv - ok 18:56:20.0062 2864 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 18:56:20.0062 2864 NwlnkFlt - ok 18:56:20.0078 2864 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 18:56:20.0078 2864 NwlnkFwd - ok 18:56:20.0328 2864 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 18:56:20.0468 2864 odserv - ok 18:56:20.0562 2864 omci (53d5f1278d9edb21689bbbcecc09108d) C:\WINDOWS\system32\DRIVERS\omci.sys 18:56:20.0562 2864 omci - ok 18:56:20.0625 2864 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 18:56:20.0640 2864 ose - ok 18:56:20.0718 2864 P3 (c90018bafdc7098619a4a95b046b30f3) C:\WINDOWS\system32\DRIVERS\p3.sys 18:56:20.0718 2864 P3 - ok 18:56:20.0796 2864 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys 18:56:20.0812 2864 Parport - ok 18:56:20.0875 2864 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 18:56:20.0875 2864 PartMgr - ok 18:56:20.0968 2864 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys 18:56:20.0968 2864 ParVdm - ok 18:56:20.0968 2864 PCAMPR5 - ok 18:56:20.0984 2864 PCANDIS5 - ok 18:56:21.0046 2864 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys 18:56:21.0062 2864 PCI - ok 18:56:21.0078 2864 PCIDump - ok 18:56:21.0109 2864 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys 18:56:21.0109 2864 PCIIde - ok 18:56:21.0187 2864 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys 18:56:21.0203 2864 Pcmcia - ok 18:56:21.0218 2864 PDCOMP - ok 18:56:21.0234 2864 PDFRAME - ok 18:56:21.0265 2864 PDRELI - ok 18:56:21.0281 2864 PDRFRAME - ok 18:56:21.0328 2864 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\System32\DRIVERS\perc2.sys 18:56:21.0328 2864 perc2 - ok 18:56:21.0375 2864 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\System32\DRIVERS\perc2hib.sys 18:56:21.0375 2864 perc2hib - ok 18:56:21.0484 2864 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe 18:56:21.0484 2864 PlugPlay - ok 18:56:21.0546 2864 Pml Driver HPZ12 (9d84376931440f3679beef2a414fa493) C:\WINDOWS\system32\HPZipm12.exe 18:56:21.0562 2864 Pml Driver HPZ12 - ok 18:56:21.0640 2864 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe 18:56:21.0640 2864 PolicyAgent - ok 18:56:21.0703 2864 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 18:56:21.0718 2864 PptpMiniport - ok 18:56:21.0796 2864 PRISM_USB (9085ebeed5503c392b03f4cc129d779b) C:\WINDOWS\system32\DRIVERS\DELUSB_51.sys 18:56:21.0843 2864 PRISM_USB - ok 18:56:21.0906 2864 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys 18:56:21.0906 2864 Processor - ok 18:56:21.0921 2864 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 18:56:21.0921 2864 ProtectedStorage - ok 18:56:22.0000 2864 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 18:56:22.0015 2864 PSched - ok 18:56:22.0093 2864 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 18:56:22.0093 2864 Ptilink - ok 18:56:22.0140 2864 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys 18:56:22.0140 2864 PxHelp20 - ok 18:56:22.0203 2864 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\System32\DRIVERS\ql1080.sys 18:56:22.0203 2864 ql1080 - ok 18:56:22.0265 2864 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\System32\DRIVERS\ql10wnt.sys 18:56:22.0265 2864 Ql10wnt - ok 18:56:22.0312 2864 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\System32\DRIVERS\ql12160.sys 18:56:22.0328 2864 ql12160 - ok 18:56:22.0406 2864 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\System32\DRIVERS\ql1240.sys 18:56:22.0406 2864 ql1240 - ok 18:56:22.0484 2864 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\System32\DRIVERS\ql1280.sys 18:56:22.0484 2864 ql1280 - ok 18:56:22.0546 2864 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 18:56:22.0546 2864 RasAcd - ok 18:56:22.0609 2864 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll 18:56:22.0609 2864 RasAuto - ok 18:56:22.0687 2864 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 18:56:22.0703 2864 Rasl2tp - ok 18:56:22.0765 2864 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll 18:56:22.0781 2864 RasMan - ok 18:56:22.0843 2864 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 18:56:22.0843 2864 RasPppoe - ok 18:56:22.0875 2864 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 18:56:22.0875 2864 Raspti - ok 18:56:22.0953 2864 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 18:56:22.0953 2864 Rdbss - ok 18:56:22.0984 2864 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 18:56:22.0984 2864 RDPCDD - ok 18:56:23.0078 2864 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 18:56:23.0078 2864 rdpdr - ok 18:56:23.0156 2864 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys 18:56:23.0156 2864 RDPWD - ok 18:56:23.0234 2864 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe 18:56:23.0234 2864 RDSessMgr - ok 18:56:23.0328 2864 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys 18:56:23.0343 2864 redbook - ok 18:56:23.0437 2864 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll 18:56:23.0453 2864 RemoteAccess - ok 18:56:23.0546 2864 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe 18:56:23.0562 2864 RpcLocator - ok 18:56:23.0656 2864 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll 18:56:23.0671 2864 RpcSs - ok 18:56:23.0750 2864 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe 18:56:23.0765 2864 RSVP - ok 18:56:23.0812 2864 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 18:56:23.0812 2864 SamSs - ok 18:56:23.0890 2864 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe 18:56:23.0890 2864 SCardSvr - ok 18:56:23.0953 2864 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll 18:56:23.0968 2864 Schedule - ok 18:56:24.0031 2864 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 18:56:24.0046 2864 Secdrv - ok 18:56:24.0109 2864 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll 18:56:24.0109 2864 seclogon - ok 18:56:24.0140 2864 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll 18:56:24.0140 2864 SENS - ok 18:56:24.0203 2864 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 18:56:24.0203 2864 serenum - ok 18:56:24.0250 2864 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys 18:56:24.0265 2864 Serial - ok 18:56:24.0312 2864 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 18:56:24.0312 2864 Sfloppy - ok 18:56:24.0406 2864 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll 18:56:24.0421 2864 SharedAccess - ok 18:56:24.0500 2864 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 18:56:24.0500 2864 ShellHWDetection - ok 18:56:24.0531 2864 Simbad - ok 18:56:24.0593 2864 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\System32\DRIVERS\sisagp.sys 18:56:24.0593 2864 sisagp - ok 18:56:24.0671 2864 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 18:56:24.0671 2864 SLIP - ok 18:56:24.0734 2864 SMServer (1339e2824d1567a18604ad0157d82e7b) C:\WINDOWS\system32\snmvtsvc.exe 18:56:24.0734 2864 SMServer - ok 18:56:24.0828 2864 smwdm (31fd0707c7dbe715234f2823b27214fe) C:\WINDOWS\system32\drivers\smwdm.sys 18:56:24.0875 2864 smwdm - ok 18:56:24.0921 2864 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\System32\DRIVERS\sparrow.sys 18:56:24.0921 2864 Sparrow - ok 18:56:24.0984 2864 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 18:56:24.0984 2864 splitter - ok 18:56:25.0062 2864 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe 18:56:25.0078 2864 Spooler - ok 18:56:25.0109 2864 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys 18:56:25.0125 2864 sr - ok 18:56:25.0203 2864 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll 18:56:25.0203 2864 srservice - ok 18:56:25.0296 2864 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 18:56:25.0328 2864 Srv - ok 18:56:25.0406 2864 sscdbhk5 (328e8bb94ec58480f60458fb4b8437a7) C:\WINDOWS\system32\drivers\sscdbhk5.sys 18:56:25.0406 2864 sscdbhk5 - ok 18:56:25.0484 2864 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll 18:56:25.0500 2864 SSDPSRV - ok 18:56:25.0531 2864 ssrtln (7ec8b427cee5c0cdac066320b93f1355) C:\WINDOWS\system32\drivers\ssrtln.sys 18:56:25.0531 2864 ssrtln - ok 18:56:25.0609 2864 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll 18:56:25.0625 2864 stisvc - ok 18:56:25.0671 2864 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 18:56:25.0687 2864 streamip - ok 18:56:25.0718 2864 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 18:56:25.0718 2864 swenum - ok 18:56:25.0750 2864 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 18:56:25.0765 2864 swmidi - ok 18:56:25.0781 2864 SwPrv - ok 18:56:25.0859 2864 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\System32\DRIVERS\symc810.sys 18:56:25.0859 2864 symc810 - ok 18:56:25.0890 2864 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys 18:56:25.0890 2864 symc8xx - ok 18:56:25.0921 2864 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\System32\DRIVERS\sym_hi.sys 18:56:25.0921 2864 sym_hi - ok 18:56:25.0953 2864 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys 18:56:25.0953 2864 sym_u3 - ok 18:56:26.0015 2864 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 18:56:26.0031 2864 sysaudio - ok 18:56:26.0109 2864 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe 18:56:26.0109 2864 SysmonLog - ok 18:56:26.0203 2864 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll 18:56:26.0203 2864 TapiSrv - ok 18:56:26.0281 2864 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 18:56:26.0328 2864 Tcpip - ok 18:56:26.0406 2864 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 18:56:26.0421 2864 TDPIPE - ok 18:56:26.0468 2864 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 18:56:26.0484 2864 TDTCP - ok 18:56:26.0562 2864 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 18:56:26.0578 2864 TermDD - ok 18:56:26.0656 2864 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll 18:56:26.0656 2864 TermService - ok 18:56:26.0796 2864 tfsnboio (c229bf90443be8d3bd2b65d7f3ac0f35) C:\WINDOWS\system32\dla\tfsnboio.sys 18:56:26.0796 2864 tfsnboio - ok 18:56:26.0812 2864 tfsncofs (79ee9fcd7728e54ab8fbc30962f0416f) C:\WINDOWS\system32\dla\tfsncofs.sys 18:56:26.0812 2864 tfsncofs - ok 18:56:26.0843 2864 tfsndrct (9efb37e7de17d783a059b653f7e8afad) C:\WINDOWS\system32\dla\tfsndrct.sys 18:56:26.0843 2864 tfsndrct - ok 18:56:26.0875 2864 tfsndres (130254995ebedcb34d62e8d78ec9dbd0) C:\WINDOWS\system32\dla\tfsndres.sys 18:56:26.0875 2864 tfsndres - ok 18:56:26.0906 2864 tfsnifs (9b40e1e4aeed849812a2e43a388a7e77) C:\WINDOWS\system32\dla\tfsnifs.sys 18:56:26.0921 2864 tfsnifs - ok 18:56:26.0953 2864 tfsnopio (818047ad850b312705aa17ca96b9427d) C:\WINDOWS\system32\dla\tfsnopio.sys 18:56:26.0953 2864 tfsnopio - ok 18:56:26.0984 2864 tfsnpool (4603e813bcc6dd465cd8d2afd37fa90d) C:\WINDOWS\system32\dla\tfsnpool.sys 18:56:26.0984 2864 tfsnpool - ok 18:56:27.0015 2864 tfsnudf (6fc2cd904a9a55acfdfc780a611a75ed) C:\WINDOWS\system32\dla\tfsnudf.sys 18:56:27.0031 2864 tfsnudf - ok 18:56:27.0109 2864 tfsnudfa (d4afa4d00f8db3fd1c15b3fe49c3a96c) C:\WINDOWS\system32\dla\tfsnudfa.sys 18:56:27.0125 2864 tfsnudfa - ok 18:56:27.0187 2864 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 18:56:27.0187 2864 Themes - ok 18:56:27.0296 2864 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\System32\DRIVERS\toside.sys 18:56:27.0296 2864 TosIde - ok 18:56:27.0375 2864 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll 18:56:27.0390 2864 TrkWks - ok 18:56:27.0468 2864 TuneConvertAudio (7c2d2b593b837fd59c17ef649cda1ea6) C:\WINDOWS\system32\drivers\TuneConvertAudio.sys 18:56:27.0468 2864 TuneConvertAudio - ok 18:56:27.0546 2864 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 18:56:27.0562 2864 Udfs - ok 18:56:27.0625 2864 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\System32\DRIVERS\ultra.sys 18:56:27.0625 2864 ultra - ok 18:56:27.0718 2864 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 18:56:27.0734 2864 Update - ok 18:56:27.0796 2864 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll 18:56:27.0796 2864 upnphost - ok 18:56:27.0828 2864 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe 18:56:27.0843 2864 UPS - ok 18:56:27.0890 2864 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys 18:56:27.0890 2864 USBAAPL - ok 18:56:27.0953 2864 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 18:56:27.0953 2864 usbccgp - ok 18:56:27.0984 2864 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 18:56:27.0984 2864 usbehci - ok 18:56:28.0046 2864 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 18:56:28.0062 2864 usbhub - ok 18:56:28.0125 2864 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 18:56:28.0125 2864 usbprint - ok 18:56:28.0156 2864 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 18:56:28.0156 2864 usbscan - ok 18:56:28.0187 2864 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 18:56:28.0187 2864 USBSTOR - ok 18:56:28.0234 2864 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 18:56:28.0234 2864 usbuhci - ok 18:56:28.0265 2864 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 18:56:28.0265 2864 VgaSave - ok 18:56:28.0328 2864 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\System32\DRIVERS\viaagp.sys 18:56:28.0343 2864 viaagp - ok 18:56:28.0390 2864 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys 18:56:28.0390 2864 ViaIde - ok 18:56:28.0546 2864 Viewpoint Manager Service (5f974fde801c73952770736becde11e7) C:\Program Files\Viewpoint\Common\ViewpointService.exe 18:56:28.0546 2864 Viewpoint Manager Service - ok 18:56:28.0609 2864 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys 18:56:28.0625 2864 VolSnap - ok 18:56:28.0703 2864 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe 18:56:28.0718 2864 VSS - ok 18:56:28.0765 2864 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll 18:56:28.0781 2864 w32time - ok 18:56:28.0859 2864 w810bus (5e8b60606fc4173b69cdecd964f22d28) C:\WINDOWS\system32\DRIVERS\w810bus.sys 18:56:28.0875 2864 w810bus - ok 18:56:28.0937 2864 w810mdfl (c0cc4f5a3c58b4c07ec4a82a5ae24714) C:\WINDOWS\system32\DRIVERS\w810mdfl.sys 18:56:28.0937 2864 w810mdfl - ok 18:56:29.0000 2864 w810mdm (2aafeedc3bfe14419cbce7ceea59dd05) C:\WINDOWS\system32\DRIVERS\w810mdm.sys 18:56:29.0015 2864 w810mdm - ok 18:56:29.0046 2864 w810mgmt (b0037db3f890d0ffcf7e35f356a435ec) C:\WINDOWS\system32\DRIVERS\w810mgmt.sys 18:56:29.0046 2864 w810mgmt - ok 18:56:29.0078 2864 w810obex (bf609636068f17246f94b490c5812483) C:\WINDOWS\system32\DRIVERS\w810obex.sys 18:56:29.0093 2864 w810obex - ok 18:56:29.0156 2864 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 18:56:29.0156 2864 Wanarp - ok 18:56:29.0234 2864 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys 18:56:29.0234 2864 wanatw - ok 18:56:29.0281 2864 WANMiniportService (909f2dc0da7f57d229a05ee90647b2c3) C:\WINDOWS\wanmpsvc.exe 18:56:30.0671 2864 WANMiniportService - ok 18:56:30.0718 2864 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys 18:56:30.0750 2864 Wdf01000 - ok 18:56:30.0765 2864 WDICA - ok 18:56:30.0843 2864 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 18:56:30.0843 2864 wdmaud - ok 18:56:30.0921 2864 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll 18:56:30.0937 2864 WebClient - ok 18:56:31.0046 2864 winachsf (2e5bc3ddf1c44c84c3093e1148a0354e) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys 18:56:31.0062 2864 winachsf - ok 18:56:31.0156 2864 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll 18:56:31.0171 2864 winmgmt - ok 18:56:31.0312 2864 WinUSB (fd600b032e741eb6aab509fc630f7c42) C:\WINDOWS\system32\DRIVERS\WinUSB.sys 18:56:31.0312 2864 WinUSB - ok 18:56:31.0375 2864 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll 18:56:31.0390 2864 WmdmPmSN - ok 18:56:31.0468 2864 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe 18:56:31.0468 2864 WmiApSrv - ok 18:56:31.0687 2864 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe 18:56:31.0718 2864 WMPNetworkSvc - ok 18:56:31.0984 2864 WMZuneComm (017695393afffed8de58abd1b085be6d) c:\Program Files\Zune\WMZuneComm.exe 18:56:32.0140 2864 WMZuneComm - ok 18:56:32.0359 2864 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys 18:56:32.0359 2864 WpdUsb - ok 18:56:32.0453 2864 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll 18:56:32.0453 2864 wscsvc - ok 18:56:32.0531 2864 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 18:56:32.0531 2864 WSTCODEC - ok 18:56:32.0578 2864 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll 18:56:32.0593 2864 wuauserv - ok 18:56:32.0671 2864 WudfPf (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 18:56:32.0687 2864 WudfPf - ok 18:56:32.0750 2864 WudfRd (f91ff1e51fca30b3c3981db7d5924252) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 18:56:32.0750 2864 WudfRd - ok 18:56:32.0828 2864 WudfSvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\WINDOWS\System32\WUDFSvc.dll 18:56:32.0859 2864 WudfSvc - ok 18:56:32.0937 2864 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll 18:56:32.0953 2864 WZCSVC - ok 18:56:33.0000 2864 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll 18:56:33.0015 2864 xmlprov - ok 18:56:33.0062 2864 zumbus (ae279cd76b38fc079eec3ca6d65a5926) C:\WINDOWS\system32\DRIVERS\zumbus.sys 18:56:33.0078 2864 zumbus - ok 18:56:33.0250 2864 ZuneBusEnum (37f339b64f19e2775284ed7161b96683) c:\Program Files\Zune\ZuneBusEnum.exe 18:56:33.0265 2864 ZuneBusEnum - ok 18:56:34.0343 2864 ZuneNetworkSvc (1076df9ade4e13ea3bf39d2165aeb903) c:\Program Files\Zune\ZuneNss.exe 18:56:35.0015 2864 ZuneNetworkSvc - ok 18:56:35.0203 2864 ZuneWlanCfgSvc (de1cdb333a402b279f04d627122fa08e) c:\Program Files\Zune\ZuneWlanCfgSvc.exe 18:56:35.0218 2864 ZuneWlanCfgSvc - ok 18:56:35.0421 2864 {6080A529-897E-4629-A488-ABA0C29B635E} (fd1f4e9cf06c71c8d73a24acf18d8296) C:\WINDOWS\system32\drivers\ialmsbw.sys 18:56:35.0421 2864 {6080A529-897E-4629-A488-ABA0C29B635E} - ok 18:56:35.0468 2864 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (d4d7331d33d1fa73e588e5ce0d90a4c1) C:\WINDOWS\system32\drivers\ialmkchw.sys 18:56:35.0484 2864 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok 18:56:35.0515 2864 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 18:56:36.0078 2864 \Device\Harddisk0\DR0 - ok 18:56:36.0078 2864 Boot (0x1200) (098a14abbacacacd32193e9d7cab3ef4) \Device\Harddisk0\DR0\Partition0 18:56:36.0093 2864 \Device\Harddisk0\DR0\Partition0 - ok 18:56:36.0093 2864 ============================================================ 18:56:36.0093 2864 Scan finished 18:56:36.0093 2864 ============================================================ 18:56:36.0125 2960 Detected object count: 0 18:56:36.0125 2960 Actual detected object count: 0 Apparently it didn't detect anything.
  7. I ran and finished the Fix.bat task. It is a desktop computer, made by Dell. I will do the next steps you recommend.
  8. Sorry for replying again, but I had to turn the computer off...when I turned it on again ie was working.
  9. Okay, a million iexplore.exe is a bit of an exaggeration. More like ten processes or so of the same name.
  10. So, after trying to run MBAM twice. Once while connected to the internet, another time while disconnected, the internet will no longer load. I know the internet network is fine, as I am using WiFi and typing this from another computer connected to that network. Why is IE no longer loading? It was doing this before...I am running fix.bat as I type this. Also ran the fixpolicies.exe and cmd file. Task manage looks normal after your advice. IE is not working. Here's exactly what happened with MBAM before I did everything else you suggested: The first time, I ran MBAM, then came back, no logs no MBAM running. Second time: I disabled the LAN connection, tried to scan with MBAM. Came back a few hours later to find the same thing. Renabled the LAN connection and the internet on that specific computer no longer works. Also, I brought up the TAsk Manager, it seems like a million iexplore.exe are running and about 6 svchost.exe are running.
  11. ESET log: ESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK # version=7 # iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339) # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=23ab37b01edc654e8f8aa8ebc31c6154 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2012-07-30 09:04:12 # local_time=2012-07-30 04:04:12 (-0600, Central Daylight Time) # country="United States" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # compatibility_mode=512 16777215 100 0 0 0 0 0 # compatibility_mode=2304 16777191 100 0 0 0 0 0 # compatibility_mode=8192 67108863 100 0 0 0 0 0 # compatibility_mode=9730 16764926 0 4 128114160 128114160 0 0 # scanned=129057 # found=8 # cleaned=0 # scan_time=7101 C:\Documents and Settings\admin\Application Data\Sun\Java\Deployment\cache\6.0\6\10314b46-4964d917 probably a variant of Win32/TrojanDownloader.Agent.JEVTTHX trojan (unable to clean) 00000000000000000000000000000000 I C:\Documents and Settings\admin\Application Data\Sun\Java\Deployment\cache\6.0\6\10314b46-50bcab1e probably a variant of Win32/TrojanDownloader.Agent.JEVTTHX trojan (unable to clean) 00000000000000000000000000000000 I C:\Documents and Settings\admin\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\help4.jar-59bfd29f-1147767f.zip probably a variant of Win32/TrojanDownloader.Agent.JEVTTHX trojan (unable to clean) 00000000000000000000000000000000 I C:\WINDOWS\SYSTEM32\ttutv.bak1 Win32/Adware.Virtumonde.NEO application (unable to clean) 00000000000000000000000000000000 I C:\WINDOWS\SYSTEM32\ttutv.bak2 Win32/Adware.Virtumonde.NEO application (unable to clean) 00000000000000000000000000000000 I C:\WINDOWS\SYSTEM32\ttutv.ini Win32/Adware.Virtumonde.NEO application (unable to clean) 00000000000000000000000000000000 I C:\WINDOWS\SYSTEM32\ttutv.ini2 Win32/Adware.Virtumonde.NEO application (unable to clean) 00000000000000000000000000000000 I C:\WINDOWS\SYSTEM32\ttutv.tmp Win32/Adware.Virtumonde.NEO application (unable to clean) 00000000000000000000000000000000 I I will run a MBAM full scan.
  12. MBAM scan log: Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Database version: v2012.07.30.09 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 admin :: D872FF41 [administrator] 7/30/2012 1:31:53 PM mbam-log-2012-07-30 (13-31-53).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 227775 Time elapsed: 24 minute(s), 49 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) ESET scan log: C:\Documents and Settings\admin\Application Data\Sun\Java\Deployment\cache\6.0\6\10314b46-4964d917 probably a variant of Win32/TrojanDownloader.Agent.JEVTTHX trojan C:\Documents and Settings\admin\Application Data\Sun\Java\Deployment\cache\6.0\6\10314b46-50bcab1e probably a variant of Win32/TrojanDownloader.Agent.JEVTTHX trojan C:\Documents and Settings\admin\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\help4.jar-59bfd29f-1147767f.zip probably a variant of Win32/TrojanDownloader.Agent.JEVTTHX trojan C:\WINDOWS\SYSTEM32\ttutv.bak1 Win32/Adware.Virtumonde.NEO application C:\WINDOWS\SYSTEM32\ttutv.bak2 Win32/Adware.Virtumonde.NEO application C:\WINDOWS\SYSTEM32\ttutv.ini Win32/Adware.Virtumonde.NEO application C:\WINDOWS\SYSTEM32\ttutv.ini2 Win32/Adware.Virtumonde.NEO application C:\WINDOWS\SYSTEM32\ttutv.tmp Win32/Adware.Virtumonde.NEO application I'm curious, why didn't the trojans show up in other scans? Are they false positives? Everything seems normal on the computer, except the task manager doesn't show up correctly. It still looks very strange, and you can't close it out once you bring it up.
  13. I attempted to use RogueKiller (antivirus system was off), but it would not go past the prescan step.
  14. Checkup: Results of screen317's Security Check version 0.99.43 Windows XP Service Pack 3 x86 Internet Explorer 8 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Disabled! Norton 360 `````````Anti-malware/Other Utilities Check:````````` MVPS Hosts File Out of date HijackThis installed! HijackThis 1.99.1 Eusing Free Registry Cleaner Java 6 Update 22 Java 2 Runtime Environment, SE v1.4.2 Java version out of Date! Adobe Reader 9 Adobe Reader out of Date! ````````Process Check: objlist.exe by Laurent```````` Charter Security Suite Anti-Virus fsgk32st.exe Charter Security Suite Anti-Virus FSGK32.EXE Charter Security Suite Anti-Virus fssm32.exe Charter Security Suite Anti-Virus fsav32.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C:: 8% ````````````````````End of Log`````````````````````` Bitdefender: QuickScan 32-bit v0.9.9.118 --------------------------- Scan date: Sun Jul 29 16:39:10 2012 Machine ID: FCB61FBA No infection found. ------------------- Processes --------- acsd.exe 1808 C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe America Online 1268 C:\WINDOWS\wanmpsvc.exe ArcSoft Monitor 1192 C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe Bonjour 1876 C:\Program Files\Bonjour\mDNSResponder.exe F-Secure Anti-Virus 1928 C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32st.exe F-Secure Corp. fsgk32 1948 C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32.exe F-Secure Corp. fssm32 2264 C:\Program Files\Charter Security Suite\Anti-Virus\fssm32.exe F-Secure Internet Shield 2232 C:\Program Files\Charter Security Suite\FWES\program\fsdfwd.exe F-Secure Management Agent 2016 C:\Program Files\Charter Security Suite\Common\FSHDLL32.EXE F-Secure Management Agent 3492 C:\Program Files\Charter Security Suite\Common\FSM32.EXE F-Secure Management Agent 1940 C:\Program Files\Charter Security Suite\Common\FSMA32.EXE F-Secure ORSP Client 2208 C:\Program Files\Charter Security Suite\ORSP Client\fsorsp.exe fsav32.exe 3348 C:\PROGRA~1\CHARTE~1\ANTI-V~1\fsav32.exe GrooveMonitor Utility 3436 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe hp digital imaging - hp all-in-one seri 1992 C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe hp digital imaging - hp all-in-one seri 1496 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe hp digital imaging - hp all-in-one seri 228 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe hp digital imaging - hp all-in-one seri 3160 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe iTunes 352 C:\Program Files\iPod\bin\iPodService.exe iTunes 3964 C:\Program Files\iTunes\iTunesHelper.exe Java Platform SE 6 U22 1972 C:\Program Files\Java\jre6\bin\jqs.exe LxrSII1s.exe 152 C:\WINDOWS\SYSTEM32\LxrSII1s.exe Microsoft® Windows® Operating System 656 C:\WINDOWS\SYSTEM32\notepad.exe Microsoft® Windows® Operating System 1612 C:\WINDOWS\SYSTEM32\spoolsv.exe MobileDeviceService 1828 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe QuickTime 3932 C:\Program Files\QuickTime\QTTask.exe RealPlayer (32-bit) 3324 C:\Program Files\Common Files\Real\Update_OB\realsched.exe Viewpoint Manager 400 C:\Program Files\Viewpoint\Common\ViewpointService.exe Viewpoint Manager 200 C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe Zune® 1356 C:\Program Files\Zune\ZuneBusEnum.exe Zune® 3784 C:\Program Files\Zune\ZuneLauncher.exe (verified) GoogleToolbarNotifier 4008 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (verified) Microsoft® Windows® Operating System 3872 C:\WINDOWS\explorer.exe (verified) Microsoft® Windows® Operating System 2500 C:\WINDOWS\SYSTEM32\alg.exe (verified) Microsoft® Windows® Operating System 568 C:\WINDOWS\SYSTEM32\csrss.exe (verified) Microsoft® Windows® Operating System 3972 C:\WINDOWS\SYSTEM32\ctfmon.exe (verified) Microsoft® Windows® Operating System 684 C:\WINDOWS\SYSTEM32\lsass.exe (verified) Microsoft® Windows® Operating System 672 C:\WINDOWS\SYSTEM32\services.exe (verified) Microsoft® Windows® Operating System 380 C:\WINDOWS\SYSTEM32\smss.exe (verified) Microsoft® Windows® Operating System 1236 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 1128 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 1016 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 924 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 872 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 304 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 1776 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 1424 C:\WINDOWS\SYSTEM32\svchost.exe (verified) Microsoft® Windows® Operating System 628 C:\WINDOWS\SYSTEM32\winlogon.exe (verified) Windows® Internet Explorer 492 C:\Program Files\Internet Explorer\iexplore.exe (verified) Windows® Internet Explorer 3256 C:\Program Files\Internet Explorer\iexplore.exe Network activity ---------------- Process fsorsp.exe (2208) connected on port 80 (HTTP) --> 65.200.212.213 Process iexplore.exe (3256) connected on port 80 (HTTP) --> 74.125.225.153 Process iexplore.exe (3256) connected on port 80 (HTTP) --> 184.84.95.139 Process iexplore.exe (3256) connected on port 80 (HTTP) --> 74.125.225.136 Process iexplore.exe (3256) connected on port 80 (HTTP) --> 74.125.225.121 Process iexplore.exe (3256) connected on port 80 (HTTP) --> 199.7.71.190 Process svchost.exe (924) listens on ports: 135 (RPC) Autoruns and critical files --------------------------- Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe Adobe® Flash® Player Update Service C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Apple Push C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe Apple Software Update C:\Program Files\Apple Software Update\SoftwareUpdate.exe ArcSoft Monitor C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe AUTOBACK.EXE C:\Program Files\ERUNT\AUTOBACK.EXE F-Secure Management Agent C:\Program Files\Charter Security Suite\Common\FSM32.EXE F-Secure Try & Buy Utility C:\Program Files\Charter Security Suite\FSGUI\TNBUtil.exe fsav.exe C:\Program Files\Charter Security Suite\Anti-Virus\fsav.exe GrooveMonitor Utility C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll hp digital imaging - hp all-in-one seri C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe hp digital imaging - hp all-in-one seri C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe hp digital imaging - hp all-in-one seri C:\Program Files\HP\HP Software Update\hpwuSchd2.exe iTunes C:\Program Files\iTunes\iTunesHelper.exe Java Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe Microsoft® Windows® Operating System C:\WINDOWS\system32\CRYPT32.dll Microsoft® Windows® Operating System C:\WINDOWS\System32\cryptnet.dll Microsoft® Windows® Operating System C:\WINDOWS\System32\CSCDLL.dll Microsoft® Windows® Operating System C:\WINDOWS\System32\dimsntfy.dll Microsoft® Windows® Operating System C:\WINDOWS\system32\SHELL32.dll Microsoft® Windows® Operating System C:\WINDOWS\System32\ssstars.scr Microsoft® Windows® Operating System c:\windows\system32\userinit.exe Microsoft® Windows® Operating System C:\WINDOWS\system32\WlNotify.dll QuickTime C:\Program Files\QuickTime\QTTask.exe RealPlayer (32-bit) C:\Program Files\Common Files\Real\Update_OB\realsched.exe Windows Genuine Advantage C:\WINDOWS\system32\WgaLogon.dll Zune® C:\Program Files\Zune\ZuneLauncher.exe (verified) GoogleToolbarNotifier C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\BROWSEUI.dll (verified) Microsoft® Windows® Operating System C:\WINDOWS\SYSTEM32\ctfmon.exe (verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\logonui.exe (verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\sclgntfy.dll (verified) Microsoft® Windows® Operating System C:\WINDOWS\System32\stobject.dll (verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\WPDShServiceObj.dll (verified) Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll Browser plugins --------------- Bitdefender QuickScan C:\WINDOWS\Downloaded Program Files\qsax.dll Bonjour C:\Program Files\Bonjour\mdnsNSP.dll ExpressIt Upload C:\Program Files\Internet Explorer\plugins\NPExpFTP.dll F-Secure Protocol Scanner LSP C:\Program Files\Charter Security Suite\FSPS\program\FSLSP.DLL Fast Search c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll Google Toolbar for Internet Explorer c:\program files\google\google toolbar\googletoolbar.dll GoogleToolbarNotifier C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll InstallShield Update Service C:\WINDOWS\Downloaded Program Files\isusweb.dll Java Platform SE 6 U22 c:\program files\java\jre6\bin\jp2ssv.dll Java Platform SE 6 U22 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll Java Platform SE 6 U22 C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll Litmus C:\Program Files\Charter Security Suite\NRS\iescript\baselitmus.dll Messenger C:\Program Files\Messenger\msmsgs.exe MetaStream 3 Plugin C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll Microsoft® Windows® Operating System C:\WINDOWS\system32\mswsock.dll Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll Microsoft® Windows® Operating System C:\WINDOWS\System32\winrnr.dll npitunes.dll C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin8.dll RealJukebox NS Plugin C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll RealPlayer Download and Record Plugin f C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll RealPlayer G2 LiveConnect-Enabled P C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll Silverlight Plug-In c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll unagiuninst.exe C:\WINDOWS\Downloaded Program Files\unagiuninst.exe Windows Presentation Foundation c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll Windows® Internet Explorer C:\WINDOWS\system32\IEFRAME.dll (verified) AcroIEHelperShim Library C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (verified) Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll (verified) InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.dll (verified) InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.exe (verified) Microsoft® Windows® Operating System C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (verified) RealPlayer Version Plugin C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll Scan ---- MD5: b157f3ee186d3691ada627c0650eb770 \\?\c:\program files\charter security suite\hips\fshook32.dll MD5: f60955cb38e60eccbfc02a63740aa7cb \\?\c:\program files\charter security suite\hips\fsumi.dll MD5: 34ebd4ff6a24d86bb4716d6afcc1a89b C:\Program Files\Apple Software Update\SoftwareUpdate.exe MD5: 56c02cd40521a425012e4c7a08512d96 C:\Program Files\ArcSoft\TotalMedia Backup & Record\BBMonitorRes.dll MD5: e24acf1c680e5442fbdf765a12d09612 C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBackupSchedule.dll MD5: 189f97fff725ae15793012900fc33c02 C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe MD5: 40947436a70e0034e41123df5a0a7702 C:\Program Files\Bonjour\mdnsNSP.dll MD5: db5bea73edaf19ac68b2c0fad0f92b1a C:\Program Files\Bonjour\mDNSResponder.exe MD5: 1755023407fde00d9916505a557569d5 C:\Program Files\Charter Security Suite\Anti-Virus\Aquarius\core\bdcore.dll MD5: 7ecd1477cdf42e181ca0239c10704dda C:\Program Files\Charter Security Suite\Anti-Virus\Aquarius\fpiaqu.dll MD5: 24726f9f1eb8f1c1e971c5f5e917ae3f C:\Program Files\Charter Security Suite\Anti-Virus\fsav.exe MD5: 85f34c0982338d3c5a41ac6e66e7de7f C:\Program Files\Charter Security Suite\Anti-Virus\fsav32.exe MD5: e42d1dbdea761562eda2f9a2eb88b8d0 C:\Program Files\Charter Security Suite\Anti-Virus\FSAVHRES.ENG MD5: dcf5d05d51840ae2d498676eae7a2f4a C:\Program Files\Charter Security Suite\Anti-Virus\fsched.dll MD5: 92cb6cd8f28a0c6d1bca7822ce647c87 C:\Program Files\Charter Security Suite\Anti-Virus\fsecr32.dll MD5: 3ca4cf5f2db25532948ee0801a513ed7 C:\Program Files\Charter Security Suite\Anti-Virus\fsepx32.dll MD5: f14a2a809e25233160fcd369003befb5 C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32.exe MD5: a9be66e05254b20df82e0f7cddeca7dd C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32st.exe MD5: ed39ee168420e54f2750b6a3a7f5b1a2 C:\Program Files\Charter Security Suite\Anti-Virus\fshive2.dll MD5: 217a86a3838bde2b8110e41c630ef219 C:\Program Files\Charter Security Suite\Anti-Virus\fssm32.exe MD5: 452356f29d2ef1beadf26f4f0eff6070 C:\Program Files\Charter Security Suite\Anti-Virus\fsuss.dll MD5: f06c7834cb2956380f8520959e9adbb3 C:\Program Files\Charter Security Suite\Anti-Virus\fsusscr.dll MD5: 66422dc3faa1de433371816056d28270 C:\Program Files\Charter Security Suite\Anti-Virus\minifilter\fsgk.sys MD5: 7cc5951b917eac1c2e42600a1b669373 C:\Program Files\Charter Security Suite\Anti-Virus\minifilter\hashlib_x86.dll MD5: 086b0530309b6251096027978882bda2 c:\program files\charter security suite\anti-virus\qrt.dll MD5: 7e4bf91c9111b04baa363e33e992616b C:\Program Files\Charter Security Suite\Common\AMEHEVN.DLL MD5: 9fa838b634dee1cc552b17cca85f0a2a C:\Program Files\Charter Security Suite\Common\AMEHLOG.DLL MD5: 21e9e1d02f36980968ff1aea3a4c7c97 C:\Program Files\Charter Security Suite\Common\FAMEH32.DLL MD5: 9d80d4bd26396fdc2d2c4e4d5e1eba36 C:\Program Files\Charter Security Suite\Common\FCH32.DLL MD5: 1983d6073e88a2e13ef3b9e2e1e9b76a C:\Program Files\Charter Security Suite\Common\fsdfwres.ENG MD5: 7e48d9bc72c8a0a9525f309f92a284d4 C:\Program Files\Charter Security Suite\Common\FSHDLL32.EXE MD5: a28fb45fd44fa90e5f2bf94b642b7a39 C:\Program Files\Charter Security Suite\Common\fslapi.dll MD5: 8d74462038ddae95966ef5f1e53c96b0 C:\Program Files\Charter Security Suite\Common\FSM32.EXE MD5: 945d921bb4ff2ded24f62d2baf2ab48b C:\Program Files\Charter Security Suite\Common\fsma32.dll MD5: 392e85687a902239c01baddf212b1a36 C:\Program Files\Charter Security Suite\Common\FSMA32.EXE MD5: 554c96e3c39e5ba98efafec2ceacfa72 c:\program files\charter security suite\common\fsma32s.dll MD5: b0fb9d283d2f979810ee44e6867d0ba8 C:\Program Files\Charter Security Suite\Common\fsmaui32.dll MD5: a9e08b72c6179cdc7244303d36035624 C:\Program Files\Charter Security Suite\Common\fsmaures.ENG MD5: 87f369078a9cda1a9202b50a22be9d76 C:\Program Files\Charter Security Suite\Common\fsmres.ENG MD5: 0ea6e48104d562fa453f32feb01e92c6 C:\Program Files\Charter Security Suite\Common\FSPMAPI.dll MD5: d43e59faabe2ddd06b569c1836a146dd C:\Program Files\Charter Security Suite\Common\FSPMENG.DLL MD5: dd1b616c6d246c2c3d98d719f7415e22 c:\program files\charter security suite\common\fswscs.dll MD5: c137be449fcb03c3c627033f905c4e33 c:\program files\charter security suite\daas2\daas2.dll MD5: 31f68153b971f917bae07a4b0a19167a c:\program files\charter security suite\daas2\fsclm.dll MD5: 80b2b182537dac21fa57850ebfb1e171 c:\program files\charter security suite\exploitshield\fseshook.dll MD5: 2d74a891c52271a641c46f7396bf4ee1 C:\Program Files\Charter Security Suite\FSAUA\program\fsaua.dll MD5: 9e053578e7e8248dd8aa097aa8933097 c:\program files\charter security suite\fsaua\program\fsaua_api_dll.dll MD5: 88a75bcfb50e729214631406fea1a192 C:\Program Files\Charter Security Suite\FSAUA\program\fsauainfo.dll MD5: e87205c3cef3c23f778d8e3731ac9c6a C:\Program Files\Charter Security Suite\FSGUI\about.dll MD5: 6c190d156098a0ed045465284f2b2878 C:\Program Files\Charter Security Suite\FSGUI\aboutres.dll MD5: 724620e284ead7a747ed1fe9254b0ab2 C:\Program Files\Charter Security Suite\FSGUI\flyer.dll MD5: c186663f33d3885ba4bf6f68ac40ea51 C:\Program Files\Charter Security Suite\FSGUI\fsavesui.dll MD5: 4441959e5adf0ffa28745e06972e475b C:\Program Files\Charter Security Suite\FSGUI\fsavures.ENG MD5: 63afce1f41e0a9d804629c6f6eedf385 C:\Program Files\Charter Security Suite\FSGUI\fsmuiav.dll MD5: de5407a5113137dbf4b05aab8836c396 c:\program files\charter security suite\fsgui\fsscgui.dll MD5: 7abee64692283bb0f6188ea272d110a6 C:\Program Files\Charter Security Suite\FSGUI\guilaunc.dll MD5: 1f6fb56be1a5c2c79116a0b98ac20758 C:\Program Files\Charter Security Suite\FSGUI\guiplugn.dll MD5: 69b58fd331414600d14c50f9c49d68fd C:\Program Files\Charter Security Suite\FSGUI\PCPWD.DLL MD5: a9b74917d9a297dce56bb19331ea8e44 C:\Program Files\Charter Security Suite\FSGUI\strres.ENG MD5: 2a3998f26fae6ae2f4b2968553b404ce C:\Program Files\Charter Security Suite\FSGUI\TNBUtil.exe MD5: 367f95031128d466e09bdac0c4f8ba8a C:\Program Files\Charter Security Suite\FSPC\fspc.dll MD5: 59ef15decfa8571a650c667bf1edc532 c:\program files\charter security suite\fspc\fspcapi.dll MD5: 3670a099df23bb2dbd74b4635a16a593 C:\Program Files\Charter Security Suite\FSPC\fspcfsm.dll MD5: cc54710e7f98a8bb191c4e1d66ce6a72 C:\Program Files\Charter Security Suite\FSPC\fspcfsm.ENG MD5: ef2ebb2a7a9ecff43379d32273205d54 C:\Program Files\Charter Security Suite\FSPS\program\FSLSP.DLL MD5: 8e0bf7478cc3baed48282adbc97adafb C:\Program Files\Charter Security Suite\FWES\program\fsdfwd.exe MD5: 74e24784c5c7a72349df02b90bcb75ce C:\Program Files\Charter Security Suite\FWES\Program\fsesperf.dll MD5: 8eabbd4f43821bf60f009b6b5d4906e6 C:\Program Files\Charter Security Suite\FWES\Program\fsfwperf.dll MD5: 7881c705403427ac25a6e19e62bdd6c5 C:\Program Files\Charter Security Suite\FWES\Program\fsmirror.dll MD5: 1901d943993d588f243f01430ebbae6b C:\Program Files\Charter Security Suite\Gemini\fsgem.dll MD5: 224cb8cbc5d76c01e6125fc258de9632 C:\Program Files\Charter Security Suite\Gemini\fsgeme.dll MD5: f5aca65237c7511d5803cdc5e7003d75 C:\Program Files\Charter Security Suite\HIPS\drivers\fshs.sys MD5: 5b7bd542f6d040351602558ed4cf4488 C:\Program Files\Charter Security Suite\HIPS\fships.dll MD5: 75bd6d16e511de18ed22b6fa4e41f86f C:\Program Files\Charter Security Suite\ISPNews\ispnews.dll MD5: d4d405af15ad7fdb961d89fe704ebfd0 C:\Program Files\Charter Security Suite\NRS\iescript\baselitmus.dll MD5: c0fdabe49da16e2ef9e4b8bb858e2b50 C:\Program Files\Charter Security Suite\NRS\litmus.ENG MD5: 42aef6a385354aca65fc210ce7ce4d7c C:\Program Files\Charter Security Suite\ORSP Client\fsorsp.exe MD5: d9475978214c01f06a51b52ccca8fff2 c:\program files\charter security suite\orsp client\json_c.dll MD5: 1c55259f89a68f223939a34753965b0c c:\program files\charter security suite\orsp client\orspapi.dll MD5: bef0e24d58ae175bd0bd4f3cb93faa76 C:\Program Files\Charter Security Suite\ORSP Client\orspplug.dll MD5: 68997e95d4b4079a4663c794ac4798ba C:\Program Files\Charter Security Suite\Scanner-Interface\fsgkiapi.dll MD5: b12354f653f12cc5f6654fff41a2a7b6 C:\Program Files\Charter Security Suite\Spam Control\fsas.dll MD5: 23e85e2a113347d22fa85b663fe11917 C:\Program Files\Charter Security Suite\Spam Control\fsscoepl.dll MD5: 6f5c55d2fa1b3080647460e1329cdaea c:\program files\charter security suite\tnb\fstnb.dll MD5: 73d675514f148b1e69429e1d95e22adc C:\Program Files\Common Files\AOL\ACS\acsd.exe MD5: 92da9ede07390b4352b29dd82079e398 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll MD5: 1f3ff6c062b311fe410ec89f6bfac213 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe MD5: 37cf2461cb5e40c4cfab82c8fc79a2bc C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll MD5: fc33cbbb9cadcec307da010fe763d04c C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll MD5: 054b87c872292a960b9b8a834b34dfa7 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll MD5: 149d74e1128a86dc9cfb2851fbea11eb C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll MD5: 250bf888ddbe88d61eb19a9d4957c794 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll MD5: 5a963c340de1a01ba6e24945ce05d16a C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll MD5: f4bc62990e7e5c29799a895b80fc3177 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll MD5: 73862ff693168369a90f046e7f227b83 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll MD5: 794950db77aa590c2964eca0a5874a09 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll MD5: 8ba9851e671e8b5e49e303748ffd530c C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll MD5: 2503287bd19ae52e36e9de42834a2ac0 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll MD5: 2e14406e05789f91c9282ae7cfca3a07 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll MD5: 3debbecf665dcdde3a95d9b902010817 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe MD5: 1224bc6de919f8cd8c1c945280e63852 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll MD5: 06a4250c9e3606cae3f68da45702f342 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll MD5: 905b5bf5be0a86e8412801bf20357195 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll MD5: 785f487a64950f3cb8e9f16253ba3b7b C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE MD5: 89d583fc41d48328128a974c25afaeb7 C:\Program Files\Common Files\Real\Update_OB\realsched.exe MD5: fe80901578e7e3da70299a5aeb2b7fbd C:\Program Files\DellSupport\brkrsvc.exe MD5: 413f2d5f9d802688242c23b38f767ecb C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys MD5: e00de20f0f6bed5cd2160247ddc9443b C:\Program Files\ERUNT\AUTOBACK.EXE MD5: e35bccb1d1d96f8e5b09c72af70ec3f6 c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll MD5: b2a3ee0d6570bae9bd90892e0009a6ab c:\program files\google\google toolbar\googletoolbar.dll MD5: 891736c55cef9d265f915bcc0737d8a8 C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll MD5: 6bda568a2aed0f84c717b5649f70c91c C:\Program Files\HP\Digital Imaging\bin\hpoddcomm09.dll MD5: fc99dc360cfa2e32276151eb7b1d899d C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll MD5: a490ede46a746e14ae6876021b6d4269 C:\Program Files\HP\Digital Imaging\bin\hpodvd09.dll MD5: 4c7ce6459461b61ead294eaf50af3160 C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll MD5: 1f7b23305f0d7ca120a3e65dec21671f C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc MD5: aea0b0aa26e4ea377d6a12b3b5d6f90f C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll MD5: b245e6716cf85bdc55d17030ca609a73 C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll MD5: ea99b12613e5909526123eec64d6abdc C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll MD5: f11cebcee8ebd44650500e790f5bede9 C:\Program Files\HP\Digital Imaging\Bin\hpqimgr.dll MD5: 1499435cdbdf07acc38bdb49470bca88 C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe MD5: 7bc9bbc3c0c756b69e3f152abad0b44f C:\Program Files\HP\Digital Imaging\bin\hpqmfc09.dll MD5: 11dda07e408dcde39d4be4fd5ffef6d0 c:\program files\hp\digital imaging\bin\hpqmirsc.dll MD5: 20a1de2d6a22dbca17f0e6445420be47 C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll MD5: bc54b152ba902a90d47c4d951ed5a2c4 C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc MD5: 2db4d4386ac0f8cc367e1aa8ab1004ef C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe MD5: c29027a7d34814a633f1893eee00a8fc C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.rsc MD5: bcbec1b5fde429b2839410d22b5a0d15 C:\Program Files\HP\Digital Imaging\bin\hpqsti08.dll MD5: adb83edd735eb87f4030e5a9e9ba3d5c C:\Program Files\HP\Digital Imaging\bin\hpqstp08.dll MD5: 621d873625b55315d248204e6588ba2d C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll MD5: 1bf96f094044e1a6debefc6fc7e1025f C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll MD5: 806ee198284d569253eb6a1d1180b37d C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe MD5: 5597d0075861cb0a6e6087752d205c0d C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe MD5: 972297bae5220eb376e52839bae013b0 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc MD5: 82e047ac9dcfa908f169ebb20c157198 C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll MD5: 175e8a8b8705fd9d8ec3f582930b07a9 C:\Program Files\HP\Digital Imaging\bin\hpqvdcom.dll MD5: e2cd12a09aab75b19123e4ab807b2d25 C:\Program Files\HP\Digital Imaging\bin\ltkrn13n.dll MD5: ac116f16a7716a720a45d7ea47cfd983 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe MD5: a350f4ae2450eb11d621ba0f54966e30 C:\Program Files\Internet Explorer\ieproxy.dll MD5: f32b4406cef8cb0ac276f9a2affef92f C:\Program Files\Internet Explorer\plugins\NPExpFTP.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll MD5: 1dd87bb7e8265da55197c5fdec89f3e6 C:\Program Files\Internet Explorer\plugins\npqtplugin8.dll MD5: 5a7e7d3eea5c5c497f4b008a9f869026 C:\Program Files\Internet Explorer\xpshims.dll MD5: 178fe38b7740f598391eb2f51ae4ccac C:\Program Files\iPod\bin\iPodService.exe MD5: 7732270d44bb0f8c3111848f9e1a0b53 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL MD5: b8a7305083996a333089119e63c29d51 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL MD5: bbf53397690ba8931c21352d246c744c C:\Program Files\iTunes\iTunesHelper.dll MD5: 444eb38a256be60f2013488c49d2ab3f C:\Program Files\iTunes\iTunesHelper.exe MD5: f70af9eb44cc52c2da23ba23a69ae977 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL MD5: ca4674baeb26baee4e54ae588c2c74fb C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL MD5: 64151c0799431e0304ae1bd6202131a7 C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll MD5: 3f59ede1444c14cfbaa15c7ebbfe6196 c:\program files\java\jre6\bin\jp2ssv.dll MD5: 9ae07549a0d691a103faf8946554bdb7 C:\Program Files\Java\jre6\bin\jqs.exe MD5: 3ed8e561044723c6039a8a20a3ae60cc C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll MD5: bee32bce0d0a5bf5692d9020bd0c0636 C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll MD5: 3e930c641079443d4de036167a69caa2 C:\Program Files\Messenger\msmsgs.exe MD5: d291fa0a37901e5e5a687813fa2af2b5 C:\Program Files\Microsoft Office\Office12\1033\GrooveIntlResource.dll MD5: 123271bd5237ab991dc5c21fdf8835eb C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe MD5: 533aecd1b5356870ae2d905b4d3b42b7 C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll MD5: 0e34b7bb1fcf22bcc1e394d16f9e992b C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe MD5: 30efebdc960a482e3e188b9960b286e2 C:\Program Files\Microsoft Office\Office12\GrooveNew.DLL MD5: 30db64d316f502558db2380f7343c9fd C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll MD5: d8c2b95bc2353e1f18850d6b8f5dba13 C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll MD5: 207204af80505af51271fe164b56f662 C:\Program Files\Microsoft Office\Office12\GrooveUtil.DLL MD5: 9013599b12923a45c029c34e8d2211ac c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll MD5: af43c4f7f3c8bc95dad95024f96cdc4a C:\Program Files\QuickTime\QTTask.exe MD5: 29b060079a9129553e3fa75edb8243bb C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll MD5: 4c23e74ef7f99d8b07c9aa7dc087e200 C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll MD5: 33440a3ef90af7ed74ee55ca634a9cfa C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll MD5: 5f974fde801c73952770736becde11e7 C:\Program Files\Viewpoint\Common\ViewpointService.exe MD5: b49a14eb7fdd597dc4cf8160ba4be245 C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll MD5: 1ff94b386646925d2b153c8a083115c7 C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe MD5: 9db5f5e7dfbaa7cd9ae818ee2720e393 C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgrCore.dll MD5: 017695393afffed8de58abd1b085be6d c:\Program Files\Zune\WMZuneComm.exe MD5: 37f339b64f19e2775284ed7161b96683 C:\Program Files\Zune\ZuneBusEnum.exe MD5: 24e8b83fa1ae7d406285b5e598a9e304 C:\Program Files\Zune\ZuneCfg.DLL MD5: 5bd2da256a68e99622d6968330dcc461 C:\Program Files\Zune\ZuneLauncher.exe MD5: 1076df9ade4e13ea3bf39d2165aeb903 c:\Program Files\Zune\ZuneNss.exe MD5: 2bd3eded27290e1da434d056baed8df3 C:\Program Files\Zune\ZuneShellExt.dll MD5: de1cdb333a402b279f04d627122fa08e c:\Program Files\Zune\ZuneWlanCfgSvc.exe MD5: 85f34c0982338d3c5a41ac6e66e7de7f C:\PROGRA~1\CHARTE~1\ANTI-V~1\fsav32.exe MD5: 73d675514f148b1e69429e1d95e22adc C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe MD5: 310c15fd8358b2c4cd7a5b98a112883f C:\WINDOWS\AppPatch\AcGenral.DLL MD5: a1b44c0a1ad71f86579a4521d5b1c024 c:\windows\assembly\gac\accessibility\1.0.5000.0__b03f5f7f11d50a3a\accessibility.dll MD5: 6348fe0bb6230406e4401e94c3a660d8 c:\windows\assembly\gac\hpqasset\4.0.0.0__a53cf5803f4c3827\hpqasset.dll MD5: f59d6cc822f6892635b8d6d2ccde9998 c:\windows\assembly\gac\hpqbakup\3.0.0.0__a53cf5803f4c3827\hpqbakup.dll MD5: bb2be4ba77c0c84d1a3f135d418b4659 c:\windows\assembly\gac\hpqcc2\3.0.0.0__a53cf5803f4c3827\hpqcc2.dll MD5: a7b5156e9d435bbde7f080556bf547b1 c:\windows\assembly\gac\hpqcprsc\3.0.0.0__a53cf5803f4c3827\hpqcprsc.dll MD5: 32ddd519c87b37c8520d3b48c1a13f96 c:\windows\assembly\gac\hpqedit\3.0.0.0__a53cf5803f4c3827\hpqedit.dll MD5: b22ba6939f9230cdd87ead85f3ecd1d9 c:\windows\assembly\gac\hpqfmrsc\4.0.0.0__a53cf5803f4c3827\hpqfmrsc.dll MD5: 603b55ea0e2a583d42133615c451bc5b c:\windows\assembly\gac\hpqglutl\4.0.0.0__a53cf5803f4c3827\hpqglutl.dll MD5: a0dcb32156bdf2eb4af72ee38141e7b7 c:\windows\assembly\gac\hpqiface\4.0.0.0__a53cf5803f4c3827\hpqiface.dll MD5: 350750024696fd6496dda08ebe5a1ea4 c:\windows\assembly\gac\hpqimgrc\4.0.0.0__a53cf5803f4c3827\hpqimgrc.dll MD5: 268d22ad922cf3dc49962cd977b73a45 c:\windows\assembly\gac\hpqimlib\3.0.0.0__a53cf5803f4c3827\hpqimlib.dll MD5: bc33c1a2e9107e290a4b4f12894e25bd c:\windows\assembly\gac\hpqimvlt\3.0.0.0__a53cf5803f4c3827\hpqimvlt.dll MD5: 4eb6946c795b0bef7a5cf0151347e379 c:\windows\assembly\gac\hpqisrtb\4.0.0.0__a53cf5803f4c3827\hpqisrtb.dll MD5: 8f8a3958a3ad696172c8d19827319e7d c:\windows\assembly\gac\hpqmdmr\4.0.0.0__a53cf5803f4c3827\hpqmdmr.dll MD5: 5bdb40c486291ca8af13a08232baa177 c:\windows\assembly\gac\hpqntrop\4.0.0.0__a53cf5803f4c3827\hpqntrop.dll MD5: 33dfca90b4be8c62b20ce0beee4cac1d c:\windows\assembly\gac\hpqovskn\3.0.0.0__a53cf5803f4c3827\hpqovskn.dll MD5: 66d547a0c6d70c23bd39aa6b1868a8e4 c:\windows\assembly\gac\hpqprrsc\4.0.0.0__a53cf5803f4c3827\hpqprrsc.dll MD5: 1924c6fb611923da4beec3de6d5dc1eb c:\windows\assembly\gac\hpqthumb\3.0.0.0__a53cf5803f4c3827\hpqthumb.dll MD5: 80a137e5fb9e9cc95c1dcc9300905343 c:\windows\assembly\gac\hpqtray\4.0.0.0__a53cf5803f4c3827\hpqtray.dll MD5: 17da38cb41189c545e84c4682f25a0f3 c:\windows\assembly\gac\hpqutils\4.0.0.0__a53cf5803f4c3827\hpqutils.dll MD5: aa50961d0889b2085c3a54b0a024643b c:\windows\assembly\gac\hpqvideo\3.0.0.0__a53cf5803f4c3827\hpqvideo.dll MD5: 659272675eabdccfda85cf5892ed244b c:\windows\assembly\gac\interop.hpqcxm08\3.0.0.0__a53cf5803f4c3827\interop.hpqcxm08.dll MD5: 5d9e5c12afa844efcc6763a29ba8a76c c:\windows\assembly\gac\interop.hpqimgr\3.0.0.0__a53cf5803f4c3827\interop.hpqimgr.dll MD5: 67588302dfd1c8519311501db3582623 c:\windows\assembly\gac\interop.hpqvideo\3.0.0.0__a53cf5803f4c3827\interop.hpqvideo.dll MD5: f89bdd4110a8f493ab2e4637f52eb1f4 c:\windows\assembly\gac\interop.hprblog\3.0.0.0__a53cf5803f4c3827\interop.hprblog.dll MD5: f5a621c69b659258e5164306a15c9caa c:\windows\assembly\gac\lead.drawing.imaging.imageprocessing\13.0.0.113__9cf889f53ea9b907\lead.drawing.imaging.imageprocessing.dll MD5: b8549829aabd31329cb20367f05630ea c:\windows\assembly\gac\lead.drawing\13.0.0.113__9cf889f53ea9b907\lead.drawing.dll MD5: d086d14ae3e163dd38230cbc804c6747 c:\windows\assembly\gac\lead.windows.forms.drawingcontainer\13.0.0.113__9cf889f53ea9b907\lead.windows.forms.drawingcontainer.dll MD5: 4bbf2f7e4f0f21fdcf30f540e7331bd7 c:\windows\assembly\gac\lead.windows.forms\13.0.0.113__9cf889f53ea9b907\lead.windows.forms.dll MD5: 335270904fed5f3629fe0d2fcab7bd4f c:\windows\assembly\gac\lead.wrapper\13.0.0.113__9cf889f53ea9b907\lead.wrapper.dll MD5: 648fe0d27734bb73ef04bc6789b20935 c:\windows\assembly\gac\lead\13.0.0.113__9cf889f53ea9b907\lead.dll MD5: df695e9850f66cccc70659975184df2a c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll MD5: b15120fdd741500c20c4dcbb29baab46 c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll MD5: a5205b3af85b1477ab2c2a1e12201598 c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll MD5: ed4558869c7d2251f86cc24b90f15976 c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll MD5: 252fa434faf3379da82d15f3dfc00c3e c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_104653c4\mscorlib.dll MD5: 7498381ed1bb180e68fdbb16b25832d4 c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_af4655c5\system.drawing.dll MD5: c2c67352ce20af57499affe4991e5a03 c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_9dd47d51\system.windows.forms.dll MD5: 0cdf2fe35d19c2baf6fe658959933272 c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_e8f887b7\system.xml.dll MD5: 59b299317929b82af7a8ca1a899303d4 c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_621cfd35\system.dll MD5: 5002991ada7920b35e46e7ea80c134fe C:\WINDOWS\Downloaded Program Files\isusweb.dll MD5: 56940b50ab0e5923822f47b0e4463885 C:\WINDOWS\Downloaded Program Files\qsax.dll MD5: 6f678556a6fce04fc94f3435f6313705 C:\WINDOWS\Downloaded Program Files\unagiuninst.exe MD5: ca75c883ea05a05b592ee3c562cfae10 c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL MD5: 3da977851fe3013741091ed584ee7658 c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll MD5: abec6ad92ede64cfd3e63cf846248eb2 c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll MD5: 425fdbf3c4f268ed0543be2e747684b7 c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll MD5: ab87eeffd18f2baafc274e7075ea6c67 c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll MD5: 93afb83fbc1f9443cac722fca63d73bf C:\WINDOWS\system32\comctl32.dll MD5: ed0c0df222209e43ad9afbf3fe87dde0 C:\WINDOWS\system32\comsvcs.dll MD5: 8fcf03e4d7be9b5587ccf11719959006 C:\WINDOWS\system32\corpol.dll MD5: 64416c6e07606720c1ece6dd374bdffd C:\WINDOWS\system32\CRYPT32.dll MD5: c14350fc0d47d806699c4f907fc6785b C:\WINDOWS\System32\cryptnet.dll MD5: 515a7fae2070c2b0242b2353443e2f11 C:\WINDOWS\System32\CSCDLL.dll MD5: dd40363abad230a84c5e2178b11efa88 C:\WINDOWS\system32\CSRSRV.dll MD5: 56adb11f7d4d0816c0be1e701c1b5e52 C:\WINDOWS\system32\D3DIM700.DLL MD5: e2092f0a1d7abc243f9c2362483d150d C:\WINDOWS\System32\dimsntfy.dll MD5: c229bf90443be8d3bd2b65d7f3ac0f35 C:\WINDOWS\system32\dla\tfsnboio.sys MD5: 79ee9fcd7728e54ab8fbc30962f0416f C:\WINDOWS\system32\dla\tfsncofs.sys MD5: 9efb37e7de17d783a059b653f7e8afad C:\WINDOWS\system32\dla\tfsndrct.sys MD5: 130254995ebedcb34d62e8d78ec9dbd0 C:\WINDOWS\system32\dla\tfsndres.sys MD5: 9b40e1e4aeed849812a2e43a388a7e77 C:\WINDOWS\system32\dla\tfsnifs.sys MD5: 818047ad850b312705aa17ca96b9427d C:\WINDOWS\system32\dla\tfsnopio.sys MD5: 4603e813bcc6dd465cd8d2afd37fa90d C:\WINDOWS\system32\dla\tfsnpool.sys MD5: 6fc2cd904a9a55acfdfc780a611a75ed C:\WINDOWS\system32\dla\tfsnudf.sys MD5: d4afa4d00f8db3fd1c15b3fe49c3a96c C:\WINDOWS\system32\dla\tfsnudfa.sys MD5: 389496118b3b03c2328024af320132ac C:\WINDOWS\system32\DNSAPI.dll MD5: 5f7e24fa9eab896051ffb87f840730d2 c:\windows\system32\dnsrslvr.dll MD5: 062373995eae5f0eac9eaa9192136bfb C:\WINDOWS\system32\dnssd.dll MD5: 11c04b17ed2abbb4833694bcd644ac90 C:\WINDOWS\system32\drivers\aeaudio.sys MD5: a7b8a3a79d35215d798a300df49ed23f C:\WINDOWS\system32\drivers\Afc.sys MD5: 1e44bc1e83d8fd2305f8d452db109cf9 C:\WINDOWS\System32\drivers\afd.sys MD5: 068523d2cd260069b19ad68adea0d739 C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys MD5: 4b0a100eaf5c49ef3cca8c641431eacc C:\WINDOWS\System32\DRIVERS\cdrom.sys MD5: 9085ebeed5503c392b03f4cc129d779b C:\WINDOWS\System32\DRIVERS\DELUSB_51.sys MD5: 7f056a52bcba3102d2d37a4a2646c807 C:\WINDOWS\system32\drivers\drvmcdb.sys MD5: d3c1e501ed42e77574b3095309dd4075 C:\WINDOWS\system32\drivers\drvnddm.sys MD5: dfeabb7cfffadea4a912ab95bdc3177a C:\WINDOWS\system32\DRIVERS\dsunidrv.sys MD5: 6e883bf518296a40959131c2304af714 C:\WINDOWS\System32\DRIVERS\el90xbc5.sys MD5: 1d2de58a837e6909f98ca35103d10739 C:\WINDOWS\system32\Drivers\fsbts.sys MD5: aca3910a53a057b8c3a6ebf4ef788c7c C:\WINDOWS\System32\drivers\fsdfw.sys MD5: 9f1d80908658eb7f1bf70809e0b51470 C:\WINDOWS\system32\DRIVERS\HPZid412.sys MD5: f7e3e9d50f9cd3de28085a8fdaa0a1c3 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys MD5: cf1b7951b4ec8d13f3c93b74bb2b461b C:\WINDOWS\system32\DRIVERS\HPZius12.sys MD5: 2e5bc3ddf1c44c84c3093e1148a0354e C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys MD5: e9a4c20ab168be8bd78486afebba5836 C:\WINDOWS\System32\DRIVERS\HSF_DP.sys MD5: 5380253d2751f2b5d95941c09e7e42ac C:\WINDOWS\System32\DRIVERS\HSFHWBS2.sys MD5: 06b7ef73ba5f302eecc294cdf7e19702 C:\WINDOWS\System32\DRIVERS\i81xnt5.sys MD5: d4d7331d33d1fa73e588e5ce0d90a4c1 C:\WINDOWS\system32\drivers\ialmkchw.sys MD5: 44b7d5a4f2bd9fe21aea0bb0bace38c4 C:\WINDOWS\System32\DRIVERS\ialmnt5.sys MD5: fd1f4e9cf06c71c8d73a24acf18d8296 C:\WINDOWS\system32\drivers\ialmsbw.sys MD5: 7e9dce459be666ab54f67e77cb7d1297 C:\WINDOWS\System32\Drivers\Icam3.sys MD5: 5f0a0b4bc604aa1cc3f56a50e57bf054 C:\WINDOWS\system32\DRIVERS\IPFilter.sys MD5: 7c12f93c005021861a36c11df951891a C:\WINDOWS\system32\Drivers\LxrSII1d.sys MD5: eeaea6514ba7c9d273b5e87c4e1aab30 C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys MD5: 7d304a5eb4344ebeeab53a2fe3ffb9f0 C:\WINDOWS\System32\DRIVERS\mrxsmb.sys MD5: 0109c4f3850dfbab279542515386ae22 C:\WINDOWS\System32\DRIVERS\ndistapi.sys MD5: b48dc6abcd3aeff8618350ccbdc6b09a C:\WINDOWS\system32\drivers\npf.sys MD5: 53d5f1278d9edb21689bbbcecc09108d C:\WINDOWS\System32\DRIVERS\omci.sys MD5: c90018bafdc7098619a4a95b046b30f3 C:\WINDOWS\System32\DRIVERS\p3.sys MD5: 31fd0707c7dbe715234f2823b27214fe C:\WINDOWS\system32\drivers\smwdm.sys MD5: 47ddfc2f003f7f9f0592c6874962a2e7 C:\WINDOWS\System32\DRIVERS\srv.sys MD5: 328e8bb94ec58480f60458fb4b8437a7 C:\WINDOWS\system32\drivers\sscdbhk5.sys MD5: 7ec8b427cee5c0cdac066320b93f1355 C:\WINDOWS\system32\drivers\ssrtln.sys MD5: 7c2d2b593b837fd59c17ef649cda1ea6 C:\WINDOWS\system32\drivers\TuneConvertAudio.sys MD5: 83cafcb53201bbac04d822f32438e244 C:\WINDOWS\System32\Drivers\usbaapl.sys MD5: 5e8b60606fc4173b69cdecd964f22d28 C:\WINDOWS\system32\DRIVERS\w810bus.sys MD5: c0cc4f5a3c58b4c07ec4a82a5ae24714 C:\WINDOWS\system32\DRIVERS\w810mdfl.sys MD5: 2aafeedc3bfe14419cbce7ceea59dd05 C:\WINDOWS\system32\DRIVERS\w810mdm.sys MD5: b0037db3f890d0ffcf7e35f356a435ec C:\WINDOWS\system32\DRIVERS\w810mgmt.sys MD5: bf609636068f17246f94b490c5812483 C:\WINDOWS\system32\DRIVERS\w810obex.sys MD5: 7b5b44efe5eb9dadfb8ee29700885d23 C:\WINDOWS\System32\DRIVERS\wADV01nt.sys MD5: eb1f6bab6c22ede0ba551b527475f7e9 C:\WINDOWS\System32\DRIVERS\wADV02NT.sys MD5: 03ce989d846c1aa81145cb22fcb86d06 C:\WINDOWS\System32\DRIVERS\wADV05NT.sys MD5: 0a716c08cb13c3a8f4f51e882dbf7416 C:\WINDOWS\System32\DRIVERS\wanatw4.sys MD5: d83bdd5c059667a2f647a6be5703a4d2 C:\WINDOWS\System32\DRIVERS\wATV01nt.sys MD5: ed968d23354daa0d7c621580c012a1f6 C:\WINDOWS\System32\DRIVERS\wATV02NT.sys MD5: d738273f218a224c1ddac04203f27a84 C:\WINDOWS\System32\DRIVERS\wATV04nt.sys MD5: 0052d118995cbab152daabe6106d1442 C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys MD5: fd600b032e741eb6aab509fc630f7c42 C:\WINDOWS\system32\DRIVERS\WinUSB.sys MD5: 525849b4469de021d5d61b4db9be3a9d C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys MD5: 589c2bcdb5bd602bf7b63d210407ef8c C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys MD5: ae279cd76b38fc079eec3ca6d65a5926 C:\WINDOWS\system32\DRIVERS\zumbus.sys MD5: f5b754cdea20bbb3a31e16a776ede6d6 C:\WINDOWS\system32\ESENT.dll MD5: 70b37139a745d672bf2c722df0c61750 C:\WINDOWS\system32\GSService.exe MD5: 36247c6d5e1fe03a56ee81bb99d7e68c C:\WINDOWS\system32\hptcpmib.dll MD5: e0b83adfb16d794a0d207fe119d03182 C:\WINDOWS\system32\HpTcpMon.dll MD5: 5cc3838902a9257b79bd43f56d8b7275 C:\WINDOWS\system32\HPTcpMUI.dll MD5: 3a2030bbd08924970dcdb7abba4c4d92 C:\WINDOWS\system32\hpzidr12.dll MD5: 9d84376931440f3679beef2a414fa493 C:\WINDOWS\system32\HPZipm12.exe MD5: d6d559b94671573a026ed47c5e75964b C:\WINDOWS\system32\hpzipr12.dll MD5: b85ec14c7a5f7b2c8d70d4443486dd77 C:\WINDOWS\system32\hpzjrd01.dll MD5: a2973a14fd05f6a5bd61f3528dfae922 C:\WINDOWS\system32\hpzsnt12.dll MD5: 3618313f7dfb605571a48fcf55d7868f C:\WINDOWS\system32\IEFRAME.dll MD5: d9ee4442a74dd7d65d1bcfff4e37be96 C:\WINDOWS\system32\iepeers.dll MD5: ad850c33a8ac45cf66574e62d1645272 C:\WINDOWS\system32\iertutil.dll MD5: ffc01a72d1c25ccb39f61b202ce60819 C:\WINDOWS\system32\IMAGEHLP.dll MD5: 0689622e6484934eb6e5f4d3a96311f9 C:\WINDOWS\system32\jscript.dll MD5: a525c96c51d55111fdf3bea9ffffc7ae C:\WINDOWS\system32\kerberos.dll MD5: 20fa028cb6506591a99c51432a3c0174 C:\WINDOWS\system32\LangWrbk.dll MD5: bd31dc6dbe9333c4fbd4bdf0899f2160 C:\WINDOWS\system32\LSASRV.dll MD5: 38149affab4c4e8e06fb32b9cf1ebdaa C:\WINDOWS\SYSTEM32\LxrSII1s.exe MD5: 6c40d5ed8951ab7b90d08af655224ee4 C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe MD5: 76848cb1aa5818db47d5f5986e0a7485 C:\WINDOWS\system32\MFC42.DLL MD5: f35a584e947a5b401feb0fe01db4a0d7 C:\WINDOWS\system32\MFC71.DLL MD5: 1e744353bd534405187a404667da3dc3 C:\WINDOWS\system32\mgmtapi.dll MD5: fdf8cf2cb78754d634d6228e12d65aa2 C:\WINDOWS\system32\msfeeds.dll MD5: 855f6333e3a4dfc6f3c8b0520c261fcd C:\WINDOWS\system32\MSFTEDIT.DLL MD5: 886b62a906b3967cbbf0fd2c833a30bf C:\WINDOWS\system32\mshtml.dll MD5: d3f72d50de53f9f1f55240115af4d42e C:\WINDOWS\system32\msi.dll MD5: c52ce534397e1d3a442fb4c88a3cbe42 C:\WINDOWS\system32\msonpmon.dll MD5: 943337d786a56729263071623bbb9de5 C:\WINDOWS\system32\mswsock.dll MD5: acfee2392503dd5e457363a0510b8bcb C:\WINDOWS\system32\msxml3.dll MD5: 062f837c1fbdb6a0a75f82efc2ee8e74 C:\WINDOWS\system32\netshell.dll MD5: 5e28284f9b5f9097640d58a73d38ad4c C:\WINDOWS\SYSTEM32\notepad.exe MD5: f8f0d25ca553e39dde485d8fc7fcce89 C:\WINDOWS\system32\ntdll.dll MD5: 40b0f98bad16ad5def894e88c3ef8014 C:\WINDOWS\system32\ODBC32.dll MD5: 6bad1bed9872e62049e487fb91ae2f3a C:\WINDOWS\system32\ole32.dll MD5: 20200ee3cfe10e9f0c028d8653be11c6 C:\WINDOWS\system32\oleacc.dll MD5: 1b2be5777f69a71778f52ffee1c798d6 C:\WINDOWS\system32\OLEAUT32.dll MD5: d4502f124289a31976130cccb014c9aa C:\WINDOWS\system32\RPCRT4.dll MD5: 72451fd61ddbb0a1fb071b7c3cde5594 C:\WINDOWS\system32\rsvpsp.dll MD5: 0f64207b49390c8063c36ae7cbf9c2db C:\WINDOWS\system32\schannel.dll MD5: 26cb10fa893f940ab09713ff46dcdade C:\WINDOWS\system32\SHDOCVW.dll MD5: 6843d54bc4a40cc8c5741af750233d10 C:\WINDOWS\system32\SHELL32.dll MD5: 99bc0b50f511924348be19c7c7313bbf C:\WINDOWS\system32\SHSVCS.dll MD5: 1339e2824d1567a18604ad0157d82e7b C:\WINDOWS\system32\snmvtsvc.exe MD5: 60784f891563fb1b767f70117fc2428f C:\WINDOWS\SYSTEM32\spoolsv.exe MD5: 3a7c3cbe5d96b8ae96ce81f0b22fb527 c:\windows\system32\srvsvc.dll MD5: 86984e591641191236033d2a4d80ed56 C:\WINDOWS\System32\ssstars.scr MD5: 3caeae7608f1bd7ba873a3b02895b106 C:\WINDOWS\System32\sti.dll MD5: fdf44991cb9a33c901ffcbdf19ce95be C:\WINDOWS\system32\urlmon.dll MD5: a93aee1928a9d7ce3e16d24ec7380f89 c:\windows\system32\userinit.exe MD5: 9e03dc5ab51cfd0190541ce2038d819d C:\WINDOWS\system32\USP10.dll MD5: d7dcfb4d0c58ffb569de93e1681fd37a C:\WINDOWS\system32\WgaLogon.dll MD5: 684559a03cbc1d05ba120a18b0d8ba5d C:\WINDOWS\System32\WINHTTP.dll MD5: 6b1774334e2975aa60596e54f5ea1430 C:\WINDOWS\system32\WININET.dll MD5: 4a953f13942867ba8fb41f141ec1b80c C:\WINDOWS\system32\WINMM.dll MD5: d72b9ec3337b247a666f098f3d6b43de C:\WINDOWS\System32\winrnr.dll MD5: 8c7dca4b158bf16894120786a7a5f366 C:\WINDOWS\system32\winsrv.dll MD5: 95f5c420e9bdd4c3569602911420a774 C:\WINDOWS\system32\wintrust.dll MD5: 2cc34e8bb667eef78899546e12649196 C:\WINDOWS\system32\WlNotify.dll MD5: 277f3e3333f1d10ca428568197fcce70 C:\WINDOWS\system32\wsnmp32.dll MD5: fc3ec24fce372c89423e015a2ac1a31e C:\WINDOWS\system32\wuaueng.dll MD5: 16403217ab6fc5c30c14c6b12098ad4b C:\WINDOWS\system32\xpsp2res.dll MD5: 909f2dc0da7f57d229a05ee90647b2c3 C:\WINDOWS\wanmpsvc.exe MD5: 0b3595a4ff0b36d68e5fc67fd7d70fdc C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCP80.dll MD5: c9564cf4976e7e96b4052737aa2492b4 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.dll MD5: 736b12b725aeb2b07f0241a9f680cb10 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MD5: 80776884e7a05d6da5040926f82b0273 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\gdiplus.dll The following file(s) must be uploaded for server-side scanning: c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_af4655c5\system.drawing.dll Upload started - 1 file(s) system.drawing.dll (843776) Upload speed - 59 KB/s Upload finished - 1 uploaded, 0 failed The uploaded file(s) were found clean. Scan finished - communication took 14 sec Total traffic - 0.82 MB sent, 1.39 KB recvd Scanned 837 files and modules - 143 seconds ==============================================================================
  15. Info file: info.txt logfile of random's system information tool 1.09 2012-07-29 16:31:50 ======Uninstall list====== -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware Scanner" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus Client Security Installer" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Automatic Update Agent" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS2" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Diagnostics" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure E-mail Scanning" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure ExploitShield" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure FWES" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Gadget" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure GateKeeper Interface" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Gemini" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure GUI" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Help" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure HIPS" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Internet Shield" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure ISP News" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Localization API" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Management Agent" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure NAC Support" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure NRS" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure ORSP Client" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Protocol Scanner" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Control" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Scanner" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure TNB" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Uninstall" -->"C:\Program Files\Charter Security Suite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Web Filter" -->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 -->C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu -->C:\WINDOWS\System32\\MSIEXEC.EXE /I {09DA4F91-2A09-4232-AB8C-6BC740096DE3} REMOVE=UpdateMgrFeature -->C:\WINDOWS\System32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6} -->C:\WINDOWS\System32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Acrobat 4.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 4.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 4.0\NT\Uninst.dll" Adobe Flash Player 11 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_3_300_268_ActiveX.exe -maintain activex AOL Coach Version 1.0(Build:20030807.3)-->C:\Program Files\Common Files\aolshare\Coach\AolCInUn.exe AOL Uninstaller (Choose which Products to Remove)-->C:\Program Files\Common Files\AOL\uninstaller.exe Apple Application Support-->MsiExec.exe /I{343666E2-A059-48AC-AD67-230BF74E2DB2} Apple Mobile Device Support-->MsiExec.exe /I{8153ED9A-C94A-426E-9880-5E6775C08B62} Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} Bonjour-->MsiExec.exe /X{79155F2B-9895-49D7-8612-D92580E0DE5B} Broadcom Management Programs-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{89EE857B-8970-4F9F-AB58-A1C873AC72B3} /l1033 Charter Security Suite-->"C:\Program Files\Charter Security Suite\FSGUI\PostInstall.exe" /tUnInstall CleanUp!-->C:\Program Files\CleanUp!\uninstall.exe Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE} Conexant SmartHSFi V.9x 56K DF PCI Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2702\HXFSETUP.EXE -U -IDel8d8xk.INF Coupon Printer for Windows-->"C:\Program Files\Coupons\uninstall.exe" "/U:C:\Program Files\Coupons\Uninstall\uninstall.xml" Critical Update for Windows Media Player 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe" Defraggler-->"C:\Program Files\Defraggler\uninst.exe" Dell Digital Jukebox Driver-->C:\Program Files\Dell\Digital Jukebox Drivers\DrvUnins.exe /s Dell Media Experience-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\setup.exe" -uninstall Dell Solution Center-->MsiExec.exe /X{11F1920A-56A2-4642-B6E0-3B31A12C9288} DELL TrueMobile 1180 Wireless USB-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{764C5E75-2E44-4C1D-B490-5C82229E8058}\setup.exe" -l0x9 Dell TrueMobile 2300 Control Utility-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{06B8DAD8-2809-475E-BA9D-C34479A0D58A}\Setup.exe" DTM23H DellConnect-->MsiExec.exe /X{52D56C42-8C69-4882-A661-39695537C9CF} DellSupport-->MsiExec.exe /X{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D} DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER DivX-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC DVD Decrypter (Remove Only)-->"C:\Program Files\DVD Decrypter\uninstall.exe" ERUNT 1.1j-->"C:\Program Files\ERUNT\unins000.exe" Eusing Free Registry Cleaner-->C:\PROGRA~1\EUSING~1\UNWISE.EXE C:\PROGRA~1\EUSING~1\INSTALL.LOG Google Earth-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\setup.exe" -l0x9 -removeonly Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_9DE96A29E721D90A.exe" /uninstall Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} Hotfix for Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe" Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" Hotfix for Windows Media Format 11 SDK (KB973442)-->"C:\WINDOWS\$NtUninstallKB973442_WM11$\spuninst\spuninst.exe" Hotfix for Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe" Hotfix for Windows XP (KB2443685)-->"C:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe" Hotfix for Windows XP (KB2570791)-->"C:\WINDOWS\$NtUninstallKB2570791$\spuninst\spuninst.exe" Hotfix for Windows XP (KB2633952)-->"C:\WINDOWS\$NtUninstallKB2633952$\spuninst\spuninst.exe" Hotfix for Windows XP (KB932716-v2)-->"C:\WINDOWS\$NtUninstallKB932716-v2$\spuninst\spuninst.exe" Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Hotfix for Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe" Hotfix for Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe" Hotfix for Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe" HP Document Viewer 5.3-->C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat HP Image Zone 5.3-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat Intel® Extreme Graphics Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2562 Internet Explorer Default Page-->MsiExec.exe /I{35BDEFF1-A610-4956-A00D-15453C116395} Internet Explorer Q903235-->C:\WINDOWS\ieuninst.exe C:\WINDOWS\INF\Q903235.inf iPod for Windows 2005-10-12-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{D9F4A9F8-92C5-4289-9D04-F0F8F02D580A} /l1033 Java 2 Runtime Environment, SE v1.4.2-->MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142000} Java 6 Update 22-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216022FF} Joy of Cooking-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Joy of Cooking\Uninst.isu" Jurassic Park Operation Genesis-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\8\INTEL3~1\IDriver.exe /M{A347C572-F7B4-43A3-BD51-FFC99184F70D} /l1033 Learn2 Player (Uninstall Only)-->C:\Program Files\Learn2.com\StRunner\stuninst.exe Lernout & Hauspie TruVoice American English TTS Engine-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\tv_enua.inf, Uninstall Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft .NET Framework 1.1 Security Update (KB2656353)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2656353\M2656353Uninstall.msp" Microsoft .NET Framework 1.1 Security Update (KB2656370)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2656370\M2656370Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Encarta Encyclopedia Standard 2004-->MsiExec.exe /I{04410044-9149-45C6-A806-F2BF9CFCE762} Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe" Microsoft Kernel-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWdf01009$\spuninst\spuninst.exe" Microsoft Money 2004 System Pack-->MsiExec.exe /I{8C64E145-54BA-11D6-91B1-00500462BE80} Microsoft Money 2004-->MsiExec.exe /I{1D643CD7-4DD6-11D7-A4E0-000874180BB3} Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe" Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00BA-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0114-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727} Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4} Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE} Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE} Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISER /dll OSETUP.DLL Microsoft Office Enterprise 2007-->MsiExec.exe /X{91120000-0030-0000-0000-0000000FF1CE} Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE} Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE} Microsoft Office Groove MUI (English) 2007-->MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE} Microsoft Office Groove Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE} Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE} Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE} Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE} Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F} Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {71F055E8-E2C6-4214-BB3D-BFE03561B89E} Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {2314F9A1-126F-45CC-8A5E-DFAF866F3FBC} Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE} Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE} Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE} Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE} Microsoft Picture It! Photo Premium 9-->C:\WINDOWS\System32\msiexec.exe /i {DBA8B9E1-C6FF-4624-9598-73D3B41A0903} Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft Streets and Trips 2004-->MsiExec.exe /I{8704D51E-25B7-4F23-81E7-AA4F54790210} Microsoft Text-to-Speech Engine 4.0 (English)-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msTTS.inf, Uninstall Microsoft User-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWudf01009$\spuninst\spuninst.exe" Microsoft WinUsb 1.0-->"C:\WINDOWS\$NtUninstallwinusb0100$\spuninst\spuninst.exe" Microsoft Works 2004 Setup Launcher-->C:\Program Files\Microsoft Works Suite 2004\Setup\Launcher.exe D:\ Microsoft Works Suite Add-in for Microsoft Word-->MsiExec.exe /I{33BEE6F3-9987-4F98-A069-97A64EC8321A} Modem Helper-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F142D56-3326-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel MSN Music Assistant-->rundll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msninst.inf,Uninstall MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} NetWaiting-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanelAnyText Norton 360-->MsiExec.exe /I{63A6E9A9-A190-46D4-9430-2DB28654AFD8} PowerDVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall Pradis Do Not Remove-->MsiExec.exe /I{2B6E2126-4438-4CF1-BDDE-3C4355092860} Pradis: NIV Holy Bible-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{7298D123-15A2-4B51-AA8E-BB4AF4745F0E} QuickTime-->MsiExec.exe /I{7BE15435-2D3E-4B58-867F-9C75BED0208C} RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for Microsoft Windows (KB2564958)-->"C:\WINDOWS\$NtUninstallKB2564958$\spuninst\spuninst.exe" Security Update for Step By Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe" Security Update for Step By Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2497640)-->"C:\WINDOWS\ie8updates\KB2497640-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2510531)-->"C:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2530548)-->"C:\WINDOWS\ie8updates\KB2530548-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2544521)-->"C:\WINDOWS\ie8updates\KB2544521-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2559049)-->"C:\WINDOWS\ie8updates\KB2559049-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2586448)-->"C:\WINDOWS\ie8updates\KB2586448-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2618444)-->"C:\WINDOWS\ie8updates\KB2618444-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2647516)-->"C:\WINDOWS\ie8updates\KB2647516-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2675157)-->"C:\WINDOWS\ie8updates\KB2675157-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB2699988)-->"C:\WINDOWS\ie8updates\KB2699988-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB974455)-->"C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe" Security Update for Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe" Security Update for Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe" Security Update for Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Security Update for Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Security Update for Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe" Security Update for Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Security Update for Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe" Security Update for Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Security Update for Windows Media Player 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe" Security Update for Windows Media Player 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe" Security Update for Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe" Security Update for Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe" Security Update for Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe" Security Update for Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe" Security Update for Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe" Security Update for Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe" Security Update for Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe" Security Update for Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe" Security Update for Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe" Security Update for Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe" Security Update for Windows XP (KB2393802)-->"C:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe" Security Update for Windows XP (KB2412687)-->"C:\WINDOWS\$NtUninstallKB2412687$\spuninst\spuninst.exe" Security Update for Windows XP (KB2419632)-->"C:\WINDOWS\$NtUninstallKB2419632$\spuninst\spuninst.exe" Security Update for Windows XP (KB2423089)-->"C:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe" Security Update for Windows XP (KB2440591)-->"C:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe" Security Update for Windows XP (KB2443105)-->"C:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe" Security Update for Windows XP (KB2476490)-->"C:\WINDOWS\$NtUninstallKB2476490$\spuninst\spuninst.exe" Security Update for Windows XP (KB2476687)-->"C:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe" Security Update for Windows XP (KB2478960)-->"C:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe" Security Update for Windows XP (KB2478971)-->"C:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe" Security Update for Windows XP (KB2479943)-->"C:\WINDOWS\$NtUninstallKB2479943$\spuninst\spuninst.exe" Security Update for Windows XP (KB2481109)-->"C:\WINDOWS\$NtUninstallKB2481109$\spuninst\spuninst.exe" Security Update for Windows XP (KB2483185)-->"C:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe" Security Update for Windows XP (KB2485663)-->"C:\WINDOWS\$NtUninstallKB2485663$\spuninst\spuninst.exe" Security Update for Windows XP (KB2491683)-->"C:\WINDOWS\$NtUninstallKB2491683$\spuninst\spuninst.exe" Security Update for Windows XP (KB2503658)-->"C:\WINDOWS\$NtUninstallKB2503658$\spuninst\spuninst.exe" Security Update for Windows XP (KB2503665)-->"C:\WINDOWS\$NtUninstallKB2503665$\spuninst\spuninst.exe" Security Update for Windows XP (KB2506212)-->"C:\WINDOWS\$NtUninstallKB2506212$\spuninst\spuninst.exe" Security Update for Windows XP (KB2506223)-->"C:\WINDOWS\$NtUninstallKB2506223$\spuninst\spuninst.exe" Security Update for Windows XP (KB2507618)-->"C:\WINDOWS\$NtUninstallKB2507618$\spuninst\spuninst.exe" Security Update for Windows XP (KB2507938)-->"C:\WINDOWS\$NtUninstallKB2507938$\spuninst\spuninst.exe" Security Update for Windows XP (KB2508272)-->"C:\WINDOWS\$NtUninstallKB2508272$\spuninst\spuninst.exe" Security Update for Windows XP (KB2508429)-->"C:\WINDOWS\$NtUninstallKB2508429$\spuninst\spuninst.exe" Security Update for Windows XP (KB2509553)-->"C:\WINDOWS\$NtUninstallKB2509553$\spuninst\spuninst.exe" Security Update for Windows XP (KB2511455)-->"C:\WINDOWS\$NtUninstallKB2511455$\spuninst\spuninst.exe" Security Update for Windows XP (KB2524375)-->"C:\WINDOWS\$NtUninstallKB2524375$\spuninst\spuninst.exe" Security Update for Windows XP (KB2535512)-->"C:\WINDOWS\$NtUninstallKB2535512$\spuninst\spuninst.exe" Security Update for Windows XP (KB2536276)-->"C:\WINDOWS\$NtUninstallKB2536276$\spuninst\spuninst.exe" Security Update for Windows XP (KB2536276-v2)-->"C:\WINDOWS\$NtUninstallKB2536276-v2$\spuninst\spuninst.exe" Security Update for Windows XP (KB2544893)-->"C:\WINDOWS\$NtUninstallKB2544893$\spuninst\spuninst.exe" Security Update for Windows XP (KB2544893-v2)-->"C:\WINDOWS\$NtUninstallKB2544893-v2$\spuninst\spuninst.exe" Security Update for Windows XP (KB2555917)-->"C:\WINDOWS\$NtUninstallKB2555917$\spuninst\spuninst.exe" Security Update for Windows XP (KB2562937)-->"C:\WINDOWS\$NtUninstallKB2562937$\spuninst\spuninst.exe" Security Update for Windows XP (KB2566454)-->"C:\WINDOWS\$NtUninstallKB2566454$\spuninst\spuninst.exe" Security Update for Windows XP (KB2567053)-->"C:\WINDOWS\$NtUninstallKB2567053$\spuninst\spuninst.exe" Security Update for Windows XP (KB2567680)-->"C:\WINDOWS\$NtUninstallKB2567680$\spuninst\spuninst.exe" Security Update for Windows XP (KB2570222)-->"C:\WINDOWS\$NtUninstallKB2570222$\spuninst\spuninst.exe" Security Update for Windows XP (KB2570947)-->"C:\WINDOWS\$NtUninstallKB2570947$\spuninst\spuninst.exe" Security Update for Windows XP (KB2584146)-->"C:\WINDOWS\$NtUninstallKB2584146$\spuninst\spuninst.exe" Security Update for Windows XP (KB2585542)-->"C:\WINDOWS\$NtUninstallKB2585542$\spuninst\spuninst.exe" Security Update for Windows XP (KB2592799)-->"C:\WINDOWS\$NtUninstallKB2592799$\spuninst\spuninst.exe" Security Update for Windows XP (KB2598479)-->"C:\WINDOWS\$NtUninstallKB2598479$\spuninst\spuninst.exe" Security Update for Windows XP (KB2603381)-->"C:\WINDOWS\$NtUninstallKB2603381$\spuninst\spuninst.exe" Security Update for Windows XP (KB2618451)-->"C:\WINDOWS\$NtUninstallKB2618451$\spuninst\spuninst.exe" Security Update for Windows XP (KB2619339)-->"C:\WINDOWS\$NtUninstallKB2619339$\spuninst\spuninst.exe" Security Update for Windows XP (KB2620712)-->"C:\WINDOWS\$NtUninstallKB2620712$\spuninst\spuninst.exe" Security Update for Windows XP (KB2621440)-->"C:\WINDOWS\$NtUninstallKB2621440$\spuninst\spuninst.exe" Security Update for Windows XP (KB2624667)-->"C:\WINDOWS\$NtUninstallKB2624667$\spuninst\spuninst.exe" Security Update for Windows XP (KB2631813)-->"C:\WINDOWS\$NtUninstallKB2631813$\spuninst\spuninst.exe" Security Update for Windows XP (KB2633171)-->"C:\WINDOWS\$NtUninstallKB2633171$\spuninst\spuninst.exe" Security Update for Windows XP (KB2639417)-->"C:\WINDOWS\$NtUninstallKB2639417$\spuninst\spuninst.exe" Security Update for Windows XP (KB2641653)-->"C:\WINDOWS\$NtUninstallKB2641653$\spuninst\spuninst.exe" Security Update for Windows XP (KB2646524)-->"C:\WINDOWS\$NtUninstallKB2646524$\spuninst\spuninst.exe" Security Update for Windows XP (KB2647518)-->"C:\WINDOWS\$NtUninstallKB2647518$\spuninst\spuninst.exe" Security Update for Windows XP (KB2653956)-->"C:\WINDOWS\$NtUninstallKB2653956$\spuninst\spuninst.exe" Security Update for Windows XP (KB2655992)-->"C:\WINDOWS\$NtUninstallKB2655992$\spuninst\spuninst.exe" Security Update for Windows XP (KB2659262)-->"C:\WINDOWS\$NtUninstallKB2659262$\spuninst\spuninst.exe" Security Update for Windows XP (KB2660465)-->"C:\WINDOWS\$NtUninstallKB2660465$\spuninst\spuninst.exe" Security Update for Windows XP (KB2661637)-->"C:\WINDOWS\$NtUninstallKB2661637$\spuninst\spuninst.exe" Security Update for Windows XP (KB2676562)-->"C:\WINDOWS\$NtUninstallKB2676562$\spuninst\spuninst.exe" Security Update for Windows XP (KB2685939)-->"C:\WINDOWS\$NtUninstallKB2685939$\spuninst\spuninst.exe" Security Update for Windows XP (KB2686509)-->"C:\WINDOWS\$NtUninstallKB2686509$\spuninst\spuninst.exe" Security Update for Windows XP (KB2691442)-->"C:\WINDOWS\$NtUninstallKB2691442$\spuninst\spuninst.exe" Security Update for Windows XP (KB2695962)-->"C:\WINDOWS\$NtUninstallKB2695962$\spuninst\spuninst.exe" Security Update for Windows XP (KB2698365)-->"C:\WINDOWS\$NtUninstallKB2698365$\spuninst\spuninst.exe" Security Update for Windows XP (KB2707511)-->"C:\WINDOWS\$NtUninstallKB2707511$\spuninst\spuninst.exe" Security Update for Windows XP (KB2709162)-->"C:\WINDOWS\$NtUninstallKB2709162$\spuninst\spuninst.exe" Security Update for Windows XP (KB2718523)-->"C:\WINDOWS\$NtUninstallKB2718523$\spuninst\spuninst.exe" Security Update for Windows XP (KB2719985)-->"C:\WINDOWS\$NtUninstallKB2719985$\spuninst\spuninst.exe" Security Update for Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Security Update for Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe" Security Update for Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Security Update for Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Security Update for Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe" Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Security Update for Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe" Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Security Update for Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Security Update for Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe" Security Update for Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe" Security Update for Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Security Update for Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe" Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Security Update for Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe" Security Update for Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Security Update for Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe" Security Update for Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Security Update for Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe" Security Update for Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Security Update for Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe" Security Update for Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Security Update for Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe" Security Update for Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe" Security Update for Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Security Update for Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Security Update for Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Security Update for Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe" Security Update for Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Security Update for Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Security Update for Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe" Security Update for Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe" Security Update for Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Security Update for Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe" Security Update for Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Security Update for Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe" Security Update for Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe" Security Update for Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Security Update for Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Security Update for Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe" Security Update for Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe" Security Update for Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe" Security Update for Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Security Update for Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Security Update for Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe" Security Update for Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Security Update for Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe" Security Update for Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Security Update for Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Security Update for Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Security Update for Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Security Update for Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Security Update for Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Security Update for Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Security Update for Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Security Update for Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Security Update for Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe" Security Update for Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Security Update for Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Security Update for Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Security Update for Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe" Security Update for Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe" Security Update for Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Security Update for Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Security Update for Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Security Update for Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe" Security Update for Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe" Security Update for Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe" Security Update for Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe" Security Update for Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe" Security Update for Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe" Security Update for Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe" Shockwave-->C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~1\Install.log Sonic DLA-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6} Sonic Update Manager-->MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3} The Sims Superstar-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1A7F8DF6-5A3E-4CDF-BC82-BE26B407E21B}\setup.exe" -l0009 TuneConvert 7.5.1-->"C:\Program Files\TuneConvert\unins000.exe" Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {8F32B14E-F85E-482C-BF8C-C04E1A5ADE4F} Update for Windows Internet Explorer 8 (KB971180)-->"C:\WINDOWS\ie8updates\KB971180-IE8\spuninst\spuninst.exe" Update for Windows Internet Explorer 8 (KB976749)-->"C:\WINDOWS\ie8updates\KB976749-IE8\spuninst\spuninst.exe" Update for Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe" Update for Windows XP (KB2541763)-->"C:\WINDOWS\$NtUninstallKB2541763$\spuninst\spuninst.exe" Update for Windows XP (KB2607712)-->"C:\WINDOWS\$NtUninstallKB2607712$\spuninst\spuninst.exe" Update for Windows XP (KB2616676)-->"C:\WINDOWS\$NtUninstallKB2616676$\spuninst\spuninst.exe" Update for Windows XP (KB2641690)-->"C:\WINDOWS\$NtUninstallKB2641690$\spuninst\spuninst.exe" Update for Windows XP (KB2718704)-->"C:\WINDOWS\$NtUninstallKB2718704$\spuninst\spuninst.exe" Update for Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe" Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Update for Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Update for Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe" Update for Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Update for Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Update for Windows XP (KB971029)-->"C:\WINDOWS\$NtUninstallKB971029$\spuninst\spuninst.exe" Update for Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Update for Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Update for Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Viewpoint Manager (Remove Only)-->C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgrInstaller.exe /u /k Viewpoint Media Player-->C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91} Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" Windows Movie Maker 2 Winter Fun Pack-->MsiExec.exe /I{106F886B-A874-43DF-BCC4-01DB57E1F3C6} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" WinPcap 4.1.2-->"C:\Program Files\WinPcap\uninstall.exe" Zune Language Pack (CHS)-->MsiExec.exe /X{2A9DFFD8-4E09-4B91-B957-454805B0D7C4} Zune Language Pack (DAN)-->MsiExec.exe /X{8B112338-2B08-4851-AF84-E7CAD74CEB32} Zune Language Pack (ELL)-->MsiExec.exe /X{3589A659-F732-4E65-A89A-5438C332E59D} Zune Language Pack (ESP)-->MsiExec.exe /X{6B33492E-FBBC-4EC3-8738-09E16E395A10} Zune Language Pack (KOR)-->MsiExec.exe /X{51C839E1-2BE4-4E77-A1BA-CCEA5DAFA741} Zune Language Pack (MSL)-->MsiExec.exe /X{76BA306B-2AA0-47C0-AB6B-F313AB56C136} Zune Language Pack (NLD)-->MsiExec.exe /X{6740BCB0-5863-47F4-80F4-44F394DE4FE2} Zune Language Pack (NOR)-->MsiExec.exe /X{5DEFD397-4012-46C3-B6DA-E8013E660772} Zune Language Pack (PLK)-->MsiExec.exe /X{8960A0A1-BB5A-479E-92CF-65AB9D684B43} Zune Language Pack (PTB)-->MsiExec.exe /X{07EEE598-5F21-4B57-B40B-46592625B3D9} Zune Language Pack (PTG)-->MsiExec.exe /X{5C93E291-A1CC-4E51-85C6-E194209FCDB4} Zune Language Pack (RUS)-->MsiExec.exe /X{57C51D56-B287-4C11-9192-EC3C46EF76A4} Zune Language Pack (SVE)-->MsiExec.exe /X{6EB931CD-A7DA-4A44-B74A-89C8EB50086F} Zune-->c:\Program Files\Zune\ZuneSetup.exe /x ======Hosts File====== 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com ======Security center information====== AV: McAfee Anti-Virus and Anti-Spyware AV: Charter Security Suite 9.01 (disabled) FW: Charter Security Suite 9.01 ======System event log====== Computer Name: D872FF41 Event Code: 36 Message: The time service has not been able to synchronize the system time for 49152 seconds because none of the time providers has been able to provide a usable time stamp. The system clock is unsynchronized. Record Number: 67123 Source Name: W32Time Time Written: 20120624215653.000000-300 Event Type: warning User: Computer Name: D872FF41 Event Code: 8 Message: Printer HP Officejet 5600 series was purged. Record Number: 67054 Source Name: Print Time Written: 20120624081446.000000-300 Event Type: warning User: D872FF41\admin Computer Name: D872FF41 Event Code: 8 Message: Printer HP Officejet 5600 series was purged. Record Number: 67052 Source Name: Print Time Written: 20120624081404.000000-300 Event Type: warning User: D872FF41\admin Computer Name: D872FF41 Event Code: 8 Message: Printer HP Officejet 5600 series was purged. Record Number: 67049 Source Name: Print Time Written: 20120624080955.000000-300 Event Type: warning User: D872FF41\admin Computer Name: D872FF41 Event Code: 36 Message: The time service has not been able to synchronize the system time for 49152 seconds because none of the time providers has been able to provide a usable time stamp. The system clock is unsynchronized. Record Number: 67039 Source Name: W32Time Time Written: 20120624063412.000000-300 Event Type: warning User: =====Application event log===== Computer Name: D872FF41 Event Code: 8 Message: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist. Record Number: 5625 Source Name: crypt32 Time Written: 20110625100031.000000-300 Event Type: error User: Computer Name: D872FF41 Event Code: 8 Message: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: A connection with the server could not be established Record Number: 5624 Source Name: crypt32 Time Written: 20110625100030.000000-300 Event Type: error User: Computer Name: D872FF41 Event Code: 8 Message: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: A connection with the server could not be established Record Number: 5623 Source Name: crypt32 Time Written: 20110625100030.000000-300 Event Type: error User: Computer Name: D872FF41 Event Code: 8 Message: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: A connection with the server could not be established Record Number: 5622 Source Name: crypt32 Time Written: 20110625100030.000000-300 Event Type: error User: Computer Name: D872FF41 Event Code: 8 Message: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist. Record Number: 5621 Source Name: crypt32 Time Written: 20110625100030.000000-300 Event Type: error User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Teleca Shared;C:\Program Files\QuickTime\QTSystem\ "windir"=%SystemRoot% "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 9, GenuineIntel "PROCESSOR_REVISION"=0209 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "FP_NO_HOST_CHECK"=NO "asl.log"=Destination=file "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip -----------------EOF-----------------
  16. Here's the log file: Logfile of random's system information tool 1.09 (written by random/random) Run by admin at 2012-07-29 16:31:13 Microsoft Windows XP Home Edition Service Pack 3 System drive C: has 24 GB (32%) free of 76 GB Total RAM: 1022 MB (43% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 4:31:44 PM, on 7/29/2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32st.exe C:\Program Files\Charter Security Suite\Common\FSMA32.EXE C:\Program Files\Charter Security Suite\Anti-Virus\FSGK32.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Charter Security Suite\Common\FSHDLL32.EXE C:\WINDOWS\system32\LxrSII1s.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\WINDOWS\wanmpsvc.exe c:\Program Files\Zune\ZuneBusEnum.exe C:\Program Files\Charter Security Suite\FWES\Program\fsdfwd.exe C:\Program Files\Charter Security Suite\Anti-Virus\fssm32.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Charter Security Suite\Anti-Virus\fsav32.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Charter Security Suite\Common\FSM32.EXE C:\Program Files\Zune\ZuneLauncher.exe C:\Program Files\QuickTime\QTTask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\explorer.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\admin\Desktop\RSIT.exe C:\Program Files\trend micro\admin.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?fr=mcafee&p=%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files\Charter Security Suite\NRS\iescript\baselitmus.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files\Charter Security Suite\NRS\iescript\baselitmus.dll O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Charter Security Suite\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Charter Security Suite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [Zune Launcher] "c:\Program Files\Zune\ZuneLauncher.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O4 - Global Startup: TotalMedia Backup Monitor.lnk = C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\System32\shdocvw.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\System32\shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Charter Security Suite\FWES\Program\fsdfwd.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Charter Security Suite\Common\FSMA32.EXE O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\Charter Security Suite\ORSP Client\fsorsp.exe O23 - Service: GSService - Unknown owner - C:\WINDOWS\system32\GSService.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Lexar Secure II (LxrSII1s) - Unknown owner - C:\WINDOWS\SYSTEM32\LxrSII1s.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: SMServer - SMServer - C:\WINDOWS\system32\snmvtsvc.exe O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe -- End of file - 10502 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Adobe Flash Player Updater.job C:\WINDOWS\tasks\AppleSoftwareUpdate.job C:\WINDOWS\tasks\Scheduled scanning task.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-03-30 308856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-18 259696] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-15 764912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C6867EB7-8350-4856-877F-93CF8AE3DC9C}] Browsing Protection Class - C:\Program Files\Charter Security Suite\NRS\iescript\baselitmus.dll [2012-07-13 552504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}] Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-04-24 470512] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-31 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-08-31 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-18 259696] {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - Browsing Protection Toolbar - C:\Program Files\Charter Security Suite\NRS\iescript\baselitmus.dll [2012-07-13 552504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-11 49152] "TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-03-30 185896] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] "GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "F-Secure Manager"=C:\Program Files\Charter Security Suite\Common\FSM32.EXE [2009-08-05 199264] "F-Secure TNB"=C:\Program Files\Charter Security Suite\FSGUI\TNBUtil.exe [2009-08-05 2349664] "Zune Launcher"=c:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 159456] "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-11-02 59240] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2011-12-08 421736] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-04 68856] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sonic RecordNow!] [] C:\Documents and Settings\All Users\Start Menu\Programs\Startup HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe HP Image Zone Fast Start.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe TotalMedia Backup Monitor.lnk - C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe C:\Documents and Settings\admin\Start Menu\Programs\Startup ERUNT AutoBackup.lnk - C:\Program Files\ERUNT\AUTOBACK.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "NoDispAppearancePage"=0 "NoColorChoice"=0 "NoSizeChoice"=0 "NoDispScrSavPage"=0 "NoDispCPL"=0 "NoVisualStyleChoice"=0 "NoDispSettingsPage"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=0 "NoThemesTab"=0 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe"="C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe" "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe" "C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe" "C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe" "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe" "C:\Program Files\Common Files\AOL\Loader\aolload.exe"="C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader" "C:\Program Files\AIM6\aim6.exe"="C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM" "C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe"="C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove" "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service" "C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.trspch"=tssoft32.acm "vidc.cvid"=iccvid.dll "VIDC.I420"=msh263.drv "vidc.iv31"=ir32_32.dll "vidc.iv32"=ir32_32.dll "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "VIDC.YVYU"=msyuv.dll "wavemapper"=msacm32.drv "msacm.msg723"=msg723.acm "vidc.M263"=msh263.drv "vidc.M261"=msh261.drv "msacm.msaudio1"=msaud32.acm "msacm.sl_anet"=sl_anet.acm "msacm.l3acm"=C:\WINDOWS\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "vidc.iv41"=ir41_32.ax "msacm.iac2"=iac25_32.ax "vidc.iv50"=ir50_32.dll "VIDC.MPG4"=mpg4c32.dll "VIDC.MP42"=mpg4c32.dll "VIDC.MP43"=mpg4c32.dll "vidc.dvsd"=dvc.dll "vidc.DIVX"=DivX.dll "vidc.yv12"=DivX.dll "vidc.LEAD"=LCODCCMP.DLL "wave1"=wdmaud.drv "mixer1"=wdmaud.drv "MSVideo8"=VfWWDM32.dll ======List of files/folders created in the last 1 month====== 2012-07-29 16:31:14 ----D---- C:\Program Files\trend micro 2012-07-29 16:31:13 ----DC---- C:\rsit 2012-07-29 16:18:18 ----D---- C:\WINDOWS\ERDNT 2012-07-29 16:17:56 ----D---- C:\Program Files\ERUNT 2012-07-27 12:00:14 ----D---- C:\Documents and Settings\admin\Application Data\Malwarebytes 2012-07-27 11:59:56 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2012-07-27 11:59:52 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2012-07-27 11:59:43 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2012-07-27 11:59:42 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2012-07-27 10:10:29 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com 2012-07-22 18:28:00 ----D---- C:\Program Files\Joy of Cooking 2012-07-12 03:16:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$ 2012-07-12 03:16:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2718523$ 2012-07-12 03:14:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$ 2012-07-12 03:12:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$ 2012-07-12 03:04:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$ ======List of files/folders modified in the last 1 month====== 2012-07-29 16:31:14 ----RD---- C:\Program Files 2012-07-29 16:29:39 ----D---- C:\WINDOWS\Prefetch 2012-07-29 16:18:18 ----D---- C:\WINDOWS 2012-07-29 13:44:43 ----D---- C:\WINDOWS\system32\CatRoot2 2012-07-29 13:43:43 ----A---- C:\WINDOWS\ModemLog_Conexant SmartHSFi V.9x 56K DF PCI Modem.txt 2012-07-29 13:43:40 ----D---- C:\WINDOWS\temp 2012-07-29 13:23:59 ----SHD---- C:\WINDOWS\Installer 2012-07-29 13:23:59 ----HD---- C:\Config.Msi 2012-07-28 11:08:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$ 2012-07-28 11:08:49 ----D---- C:\WINDOWS\system32\DRIVERS 2012-07-28 11:08:40 ----A---- C:\WINDOWS\SchedLgU.Txt 2012-07-28 11:07:29 ----D---- C:\WINDOWS\SYSTEM32 2012-07-27 10:06:38 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe 2012-07-27 08:18:17 ----D---- C:\WINDOWS\system32\FxsTmp 2012-07-22 18:28:58 ----RSD---- C:\WINDOWS\Fonts 2012-07-12 03:16:52 ----HD---- C:\WINDOWS\INF 2012-07-12 03:16:48 ----RSHD---- C:\WINDOWS\system32\DLLCACHE 2012-07-12 03:16:25 ----A---- C:\WINDOWS\imsins.BAK 2012-07-12 03:16:09 ----HD---- C:\WINDOWS\$hf_mig$ 2012-07-12 03:16:03 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2012-07-12 03:14:50 ----A---- C:\WINDOWS\WIN.INI 2012-07-12 03:05:04 ----A---- C:\WINDOWS\system32\MRT.exe 2012-07-09 10:28:57 ----D---- C:\WINDOWS\network diagnostic ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 drvmcdb;drvmcdb; C:\WINDOWS\system32\drivers\drvmcdb.sys [2003-07-31 84576] R0 fsbts;fsbts; C:\WINDOWS\system32\Drivers\fsbts.sys [2012-05-09 44184] R0 FSFW;F-Secure Firewall Driver; C:\WINDOWS\System32\drivers\fsdfw.sys [2011-10-18 82120] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\DRIVERS\PxHelp20.sys [2007-03-29 43528] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904] R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files\Charter Security Suite\HIPS\drivers\fshs.sys [] R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352] R1 omci;OMCI WDM Device Driver; C:\WINDOWS\System32\DRIVERS\omci.sys [2002-11-08 17217] R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2003-07-14 5621] R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2003-07-14 23219] R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2003-06-20 40448] R2 dsunidrv;DellSupport UniDriver; C:\WINDOWS\system32\DRIVERS\dsunidrv.sys [2007-02-25 5376] R2 LxrSII1d;Secure II Driver; \??\C:\WINDOWS\system32\Drivers\LxrSII1d.sys [] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [2003-04-09 11043] R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2010-07-15 35088] R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2003-08-06 25685] R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2003-08-06 34837] R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2003-08-06 4117] R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2003-08-06 2233] R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2003-08-06 83284] R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2003-08-06 14229] R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2003-08-06 6357] R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2003-08-06 98068] R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2003-08-06 100373] R2 zumbus;Zune Bus Enumerator Driver; C:\WINDOWS\system32\DRIVERS\zumbus.sys [2011-08-05 41472] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816] R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776] R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys [2003-05-23 43136] R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files\Charter Security Suite\Anti-Virus\minifilter\fsgk.sys [] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600] R3 HSF_DP;HSF_DP; C:\WINDOWS\System32\DRIVERS\HSF_DP.sys [2003-07-02 1063936] R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\System32\DRIVERS\HSFHWBS2.sys [2003-07-02 202368] R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2005-06-22 807998] R3 ICAM3NT5;Intel USB Video Camera III; C:\WINDOWS\System32\Drivers\Icam3.sys [2001-08-17 141056] R3 IPFilter;Microsoft IntelliPoint Features driver; C:\WINDOWS\system32\DRIVERS\IPFilter.sys [2001-05-09 10352] R3 MxlW2k;MxlW2k; C:\WINDOWS\system32\drivers\MxlW2k.sys [2006-01-13 28256] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-02-28 545024] R3 TuneConvertAudio;TuneConvertAudio; C:\WINDOWS\system32\drivers\TuneConvertAudio.sys [2011-04-01 23608] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\System32\DRIVERS\wanatw4.sys [2003-01-10 33588] R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136] R3 winachsf;winachsf; C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys [2003-07-02 631680] S1 P3;Intel PentiumIII Processor Driver; C:\WINDOWS\System32\DRIVERS\p3.sys [2008-04-13 42752] S3 {6080A529-897E-4629-A488-ABA0C29B635E};Intel® Graphics Platform (SoftBIOS) Driver; C:\WINDOWS\system32\drivers\ialmsbw.sys [2003-04-15 113504] S3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91};Intel® Graphics Chipset (KCH) Driver; C:\WINDOWS\system32\drivers\ialmkchw.sys [2003-04-15 78752] S3 bvrp_pci;bvrp_pci; C:\WINDOWS\system32\drivers\bvrp_pci.sys [] S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 DSproct;DSproct; \??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys [] S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [2001-08-17 66591] S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-07 51120] S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-07 16496] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-07 21744] S3 i81x;i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [2004-08-04 161020] S3 iAimFP0;iAimFP0; C:\WINDOWS\System32\DRIVERS\wADV01nt.sys [2004-08-04 12415] S3 iAimFP1;iAimFP1; C:\WINDOWS\System32\DRIVERS\wADV02NT.sys [2004-08-04 12127] S3 iAimFP2;iAimFP2; C:\WINDOWS\System32\DRIVERS\wADV05NT.sys [2004-08-04 11775] S3 iAimFP3;iAimFP3; C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys [2004-08-04 12063] S3 iAimFP4;iAimFP4; C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys [2004-08-04 19455] S3 iAimTV0;iAimTV0; C:\WINDOWS\System32\DRIVERS\wATV01nt.sys [2004-08-04 29311] S3 iAimTV1;iAimTV1; C:\WINDOWS\System32\DRIVERS\wATV02NT.sys [2004-08-04 19551] S3 iAimTV2;iAimTV2; C:\WINDOWS\System32\DRIVERS\wATV03nt.sys [] S3 iAimTV3;iAimTV3; C:\WINDOWS\System32\DRIVERS\wATV04nt.sys [2004-08-04 33599] S3 iAimTV4;iAimTV4; C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys [2004-08-04 23615] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-04 1897408] S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\D:\ppp\PCAMPR5.SYS [] S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\D:\ppp\PCANDIS5.SYS [] S3 PRISM_USB;Dell TrueMobile 1180 Wireless USB Adapter; C:\WINDOWS\System32\DRIVERS\DELUSB_51.sys [2002-08-09 606208] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2011-08-02 42496] S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;USB Scanner Driver; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288] S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336] S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064] S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408] S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344] S3 WinUSB;WinUSB; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2006-11-02 39368] S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224] S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\agp440.sys [2008-04-13 42368] S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\agpCPQ.sys [2008-04-13 44928] S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\alim1541.sys [2008-04-13 42752] S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\System32\DRIVERS\amdagp.sys [2008-04-13 43008] S4 cbidf;cbidf; C:\WINDOWS\System32\DRIVERS\cbidf2k.sys [2001-08-17 13952] S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\sisagp.sys [2008-04-13 40960] S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\viaagp.sys [2008-04-13 42240] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AOL ACS;AOL Connectivity Service; C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe [2003-08-06 1376360] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144] R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 390504] R2 F-Secure Gatekeeper Handler Starter;FSGKHS; C:\Program Files\Charter Security Suite\Anti-Virus\fsgk32st.exe [2009-08-05 215648] R2 FSMA;F-Secure Management Agent; C:\Program Files\Charter Security Suite\Common\FSMA32.EXE [2009-08-05 186976] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-08-31 153376] R2 LxrSII1s;Lexar Secure II; C:\WINDOWS\system32\LxrSII1s.exe [2006-01-09 49152] R2 Viewpoint Manager Service;Viewpoint Manager Service; C:\Program Files\Viewpoint\Common\ViewpointService.exe [2007-01-04 24652] R2 WANMiniportService;WAN Miniport (ATW) Service; C:\WINDOWS\wanmpsvc.exe [2003-01-10 65536] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336] R2 ZuneBusEnum;Zune Bus Enumerator; c:\Program Files\Zune\ZuneBusEnum.exe [2011-08-05 57056] R3 FSDFWD;F-Secure Anti-Virus Firewall Daemon; C:\Program Files\Charter Security Suite\FWES\Program\fsdfwd.exe [2011-10-18 522848] R3 FSORSPClient;F-Secure ORSP Client; C:\Program Files\Charter Security Suite\ORSP Client\fsorsp.exe [2011-10-18 61088] R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-12-08 821608] S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-13 267776] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-27 250056] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 GSService;GSService; C:\WINDOWS\system32\GSService.exe [2011-03-31 745472] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-27 182768] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 SMServer;SMServer; C:\WINDOWS\system32\snmvtsvc.exe [2011-03-31 243712] S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408] S3 WMZuneComm;Zune Windows Mobile Connectivity Service; c:\Program Files\Zune\WMZuneComm.exe [2011-08-05 268512] S3 ZuneNetworkSvc;Zune Network Sharing Service; c:\Program Files\Zune\ZuneNss.exe [2011-08-05 6363872] S3 ZuneWlanCfgSvc;Zune Wireless Configuration Service; c:\Program Files\Zune\ZuneWlanCfgSvc.exe [2011-08-05 444640] S4 DSBrokerService;DSBrokerService; C:\Program Files\DellSupport\brkrsvc.exe [2007-03-07 76848] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------
  17. So I did a little digging around on the computer. The control panel only shows that the charter suite is currently installed, but in the program files I found a McAfee file. The control panel does not show that McAfee is installed (it doesn't show up) and the program menu doesn't show McAfee either. Is there a way I can manually uninstall it? My sister installed the 'Charter' security suite. Apparently it is an antivirus program available through our internet provider. I hadn't heard of it until I saw it was on the computer. I'm pretty sure it's completely useless, though.
  18. I do not know why two are shown to be active. Again, like I said, I don't normally use this computer. I have a laptop I use. I will correct the issue and get back to you.
  19. I actually own the computer, my sister uses it on a regular basis. It does not belong to a company or organization.
  20. So, I have an issue that hopefully someone can assist me with. This morning, I turned on one of my computers to find that my home page (google) would not load. I brought up the task manager to see what was running, and it came up rather strangely. None of the tabs were present, and you could only view the applications tab. On top of this, when I ran netstat (just because I was curious to see if there were any strange processes running), I found an ip address that I didn't recognize connecting to the computer. This ip address would pop up, sometimes change slightly, and then disappear/reappear. I assumed this is/was some sort of hacker or zombie computer trying to attack my system. Also, netstat showed this ip address trying to use a file called 0.log on my computer...which I deleted. When I used malawarebytes to scan my computer, several infected registry values came up. Vundo, and a general trojan. After running malawarebytes, ie is working again. However, the task manager still comes up the same way. I noticed both McAfee and a separate security suite are running, the person who regularly uses this computer told me they uninstalled this, but it looks like from the log it's not really off the system. Extremely annoying. Now, while I'm not computer illiterate by any means, I think this might be a bit above my skill level as to what I've fixed before. >_< Any help would be greatly appreciated. dds.txt attach.txt
  21. Ah, I see. Interesting. Thanks for clarifying. I was curious, as it was a term I haven't heard before. The reason why I was interested is that one of my computers was connecting to an IP address that historically (according to project honeypot) was a malicious source. I was poking around on their website and found the term honeypot, and this spiked my curiosity.
  22. I have a question, what exactly is a honeypot? I looked it up on wikipedia/google, but I can't tell if its good or bad...
  23. Realized I posted this in the wrong forum! I apologize!
  24. So, I have an issue that hopefully someone can assist me with. This morning, I turned on one of my computers to find that my home page (google) would not load. I brought up the task manager to see what was running, and it came up rather strangely. None of the tabs were present, and you could only view the applications tab. On top of this, when I ran netstat (just because I was curious to see if there were any strange processes running), I found an ip address that I didn't recognize connecting to the computer. This ip address would pop up, sometimes change slightly, and then disappear/reappear. I assumed this is/was some sort of hacker or zombie computer trying to attack my system. Also, netstat showed this ip address trying to use a file called 0.log on my computer...which I deleted. When I used malawarebytes to scan my computer, several infected registry values came up. Vundo, and a general trojan. Extremely annoying. Now, while I'm not computer illiterate by any means, I think this might be a bit above my skill level as to what I've fixed before. >_< Any help would be greatly appreciated. (I looked at the topic on 'i'm infected' by exile 360, but I was hesistant to run any of the programs beside malawarebytes until I talked to someone.)
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.